Office Visio
by Microsoft
CVEs (418)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-62557 | Hig | 0.55 | 8.4 | 0.00 | Dec 9, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-62554 | Hig | 0.55 | 8.4 | 0.00 | Dec 9, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-49697 | Hig | 0.55 | 8.4 | 0.00 | Jul 8, 2025 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-49696 | Hig | 0.55 | 8.4 | 0.01 | Jul 8, 2025 | Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-49695 | Hig | 0.55 | 8.4 | 0.01 | Jul 8, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-47953 | Hig | 0.55 | 8.4 | 0.00 | Jun 10, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-47167 | Hig | 0.55 | 8.4 | 0.01 | Jun 10, 2025 | Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-47164 | Hig | 0.55 | 8.4 | 0.01 | Jun 10, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-47162 | Hig | 0.55 | 8.4 | 0.01 | Jun 10, 2025 | Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2025-30386 | Hig | 0.55 | 8.4 | 0.01 | May 13, 2025 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | ||
| CVE-2023-36041 | Hig | 0.55 | 7.8 | 0.57 | Nov 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2023-36569 | Hig | 0.55 | 8.4 | 0.01 | Oct 10, 2023 | Microsoft Office Elevation of Privilege Vulnerability | ||
| CVE-2023-32029 | Hig | 0.55 | 7.8 | 0.54 | Jun 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2023-33148 | Hig | 0.54 | 7.8 | 0.02 | Jul 11, 2023 | Microsoft Office Elevation of Privilege Vulnerability | ||
| CVE-2023-33137 | Hig | 0.54 | 7.8 | 0.03 | Jun 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2023-33133 | Hig | 0.54 | 7.8 | 0.44 | Jun 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2023-23399 | Hig | 0.54 | 7.8 | 0.03 | Mar 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | ||
| CVE-2023-36897 | Hig | 0.53 | 8.1 | 0.02 | Aug 8, 2023 | Visual Studio Tools for Office Runtime Spoofing Vulnerability | ||
| CVE-2020-1349 | Hig | 0.53 | 7.8 | 0.23 | Jul 14, 2020 | A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka 'Microsoft Outlook Remote Code Execution Vulnerability'. | ||
| CVE-2019-1448 | Hig | 0.53 | 7.8 | 0.28 | Nov 12, 2019 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. |
- risk 0.55cvss 8.4epss 0.00
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.00
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.00
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.00
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 8.4epss 0.01
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
- risk 0.55cvss 7.8epss 0.57
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.55cvss 8.4epss 0.01
Microsoft Office Elevation of Privilege Vulnerability
- risk 0.55cvss 7.8epss 0.54
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.54cvss 7.8epss 0.02
Microsoft Office Elevation of Privilege Vulnerability
- risk 0.54cvss 7.8epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.54cvss 7.8epss 0.44
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.54cvss 7.8epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- risk 0.53cvss 8.1epss 0.02
Visual Studio Tools for Office Runtime Spoofing Vulnerability
- risk 0.53cvss 7.8epss 0.23
A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka 'Microsoft Outlook Remote Code Execution Vulnerability'.
- risk 0.53cvss 7.8epss 0.28
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
Page 3 of 21