Office Visio
by Microsoft
CVEs (411)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-38200 | 0.08 | — | 0.59 | Aug 8, 2024 | Microsoft Office Spoofing Vulnerability | |||
| CVE-2023-21716 | 0.07 | — | 0.91 | Feb 14, 2023 | Microsoft Word Remote Code Execution Vulnerability | |||
| CVE-2023-23399 | 0.04 | — | 0.07 | Mar 14, 2023 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2020-1447 | 0.04 | — | 0.46 | Jul 14, 2020 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448. | |||
| CVE-2020-0901 | 0.04 | — | 0.46 | May 21, 2020 | A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. | |||
| CVE-2018-8587 | 0.04 | — | 0.47 | Dec 12, 2018 | A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. | |||
| CVE-2018-1026 | 0.04 | — | 0.47 | Apr 12, 2018 | A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-1030. | |||
| CVE-2025-47175 | 0.03 | — | 0.01 | Jun 10, 2025 | Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-47171 | 0.03 | — | 0.03 | Jun 10, 2025 | Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally. | |||
| CVE-2025-47165 | 0.03 | — | 0.01 | Jun 10, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2025-27751 | 0.03 | — | 0.01 | Apr 8, 2025 | Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | |||
| CVE-2023-33133 | 0.03 | — | 0.37 | Jun 13, 2023 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2023-33131 | 0.03 | — | 0.03 | Jun 13, 2023 | Microsoft Outlook Remote Code Execution Vulnerability | |||
| CVE-2023-33137 | 0.03 | — | 0.03 | Jun 13, 2023 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2023-32029 | 0.03 | — | 0.40 | Jun 13, 2023 | Microsoft Excel Remote Code Execution Vulnerability | |||
| CVE-2020-1448 | 0.03 | — | 0.37 | Jul 14, 2020 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1447. | |||
| CVE-2020-1446 | 0.03 | — | 0.40 | Jul 14, 2020 | A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448. | |||
| CVE-2020-1409 | 0.03 | — | 0.42 | Jul 14, 2020 | A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'. | |||
| CVE-2020-1321 | 0.03 | — | 0.39 | Jun 9, 2020 | A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'. | |||
| CVE-2020-0991 | 0.03 | — | 0.34 | Apr 15, 2020 | A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0760. |
- CVE-2024-38200Aug 8, 2024risk 0.08cvss —epss 0.59
Microsoft Office Spoofing Vulnerability
- CVE-2023-21716Feb 14, 2023risk 0.07cvss —epss 0.91
Microsoft Word Remote Code Execution Vulnerability
- CVE-2023-23399Mar 14, 2023risk 0.04cvss —epss 0.07
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2020-1447Jul 14, 2020risk 0.04cvss —epss 0.46
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.
- CVE-2020-0901May 21, 2020risk 0.04cvss —epss 0.46
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
- CVE-2018-8587Dec 12, 2018risk 0.04cvss —epss 0.47
A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook.
- CVE-2018-1026Apr 12, 2018risk 0.04cvss —epss 0.47
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Office. This CVE ID is unique from CVE-2018-1030.
- CVE-2025-47175Jun 10, 2025risk 0.03cvss —epss 0.01
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
- CVE-2025-47171Jun 10, 2025risk 0.03cvss —epss 0.03
Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally.
- CVE-2025-47165Jun 10, 2025risk 0.03cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2025-27751Apr 8, 2025risk 0.03cvss —epss 0.01
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
- CVE-2023-33133Jun 13, 2023risk 0.03cvss —epss 0.37
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2023-33131Jun 13, 2023risk 0.03cvss —epss 0.03
Microsoft Outlook Remote Code Execution Vulnerability
- CVE-2023-33137Jun 13, 2023risk 0.03cvss —epss 0.03
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2023-32029Jun 13, 2023risk 0.03cvss —epss 0.40
Microsoft Excel Remote Code Execution Vulnerability
- CVE-2020-1448Jul 14, 2020risk 0.03cvss —epss 0.37
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1447.
- CVE-2020-1446Jul 14, 2020risk 0.03cvss —epss 0.40
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.
- CVE-2020-1409Jul 14, 2020risk 0.03cvss —epss 0.42
A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory, aka 'DirectWrite Remote Code Execution Vulnerability'.
- CVE-2020-1321Jun 9, 2020risk 0.03cvss —epss 0.39
A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'.
- CVE-2020-0991Apr 15, 2020risk 0.03cvss —epss 0.34
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0760.
Page 4 of 21