Home/Product/microsoft excel
Product

microsoft excel

402 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-42832
< 16.0.19822.20190
Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.
7.7HIGH
 CVE-2026-32199
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-32198
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-32197
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-32189
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-32188
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1HIGH
 CVE-2026-26133
< 16.0.19822.20038
AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.
7.1HIGH
 CVE-2026-26112
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-26109
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.4HIGH
 CVE-2026-26108
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-26107
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-21261
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-21259
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.
7.8HIGH
 CVE-2026-21258
all versions
Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2026-20957
all versions
Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-20950
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2026-20946
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62564
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62563
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62561
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62560
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62556
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62553
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62203
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62202
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1HIGH
 CVE-2025-62201
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62200
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-62199
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-60727
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-60726
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1HIGH
 CVE-2025-59240
all versions
Exposure of sensitive information to an unauthorized actor in Microsoft Office Excel allows an unauthorized attacker to disclose i
5.5MEDIUM
 CVE-2025-59235
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1HIGH
 CVE-2025-59233
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8HIGH
 CVE-2025-59232
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1HIGH
 CVE-2025-59231
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8HIGH
 CVE-2025-59225
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-59224
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-59223
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54904
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54903
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54902
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54901
all versions
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-54900
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54899
all versions
Free of memory not on the heap in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54898
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-54896
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-53741
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-53739
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8HIGH
 CVE-2025-53737
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-53735
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-49711
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-48812
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5MEDIUM
 CVE-2025-47165
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-32704
all versions
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.4HIGH
 CVE-2025-30383
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8HIGH
 CVE-2025-30381
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-30379
all versions
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-30377
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4HIGH
 CVE-2025-30376
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-30375
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8HIGH
 CVE-2025-29979
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-29977
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-27751
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-27750
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-26642
all versions
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-24082
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-24081
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-24075
all versions
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8HIGH
 CVE-2025-21394
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2025-21390
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2025-21387
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2025-21386
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2025-21383
all versions
Microsoft Excel Information Disclosure Vulnerability
7.8HIGH
 CVE-2025-21381
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2025-21362
all versions
Microsoft Excel Remote Code Execution Vulnerability
8.4HIGH
 CVE-2024-43106
all versions
A library injection vulnerability exists in Microsoft Excel 16.83 for macOS. A specially crafted library can leverage Excel's acce
7.1HIGH
 CVE-2024-49069
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-49030
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-49029
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-49028
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-49027
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-49026
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-43504
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-43465
all versions
Microsoft Excel Elevation of Privilege Vulnerability
7.8HIGH
 CVE-2024-30042
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2024-20673
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-36041
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-36037
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8HIGH
 CVE-2023-36766
all versions
Microsoft Excel Information Disclosure Vulnerability
7.8HIGH
 CVE-2023-33133
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-32029
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-24953
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-23399
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2023-23398
all versions
Microsoft Excel Spoofing Vulnerability
7.1HIGH
 CVE-2022-41106
all versions
Microsoft Excel Remote Code Execution Vulnerability
8.8HIGH
 CVE-2022-41104
all versions
Microsoft Excel Security Feature Bypass Vulnerability
5.5MEDIUM
 CVE-2022-41063
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-33631
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.3HIGH
 CVE-2022-30173
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-29110
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-26903
all versions
Windows Graphics Component Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-26901
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2022-22716
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2022-21840
all versions
Microsoft Office Remote Code Execution Vulnerability
8.8HIGH
 CVE-2021-43256
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-42292
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8HIGH
 CVE-2021-40442
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-40485
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-40474
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-40472
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2021-38660
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-38655
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-34518
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-34501
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-31939
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-31179
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-31178
all versions
Microsoft Office Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2021-31177
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-31175
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-31174
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2021-28456
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2021-28451
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-28449
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-27057
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-27054
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-27053
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-24070
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-24069
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-24068
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-24067
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-1714
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2021-1713
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17130
all versions
Microsoft Excel Security Feature Bypass Vulnerability
6.5MEDIUM
 CVE-2020-17129
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17128
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17127
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17126
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5MEDIUM
 CVE-2020-17125
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17123
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17067
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8HIGH
 CVE-2020-17066
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17065
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-17064
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8HIGH
 CVE-2020-16932
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-16931
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-16929
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-1594
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-1335
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-1332
all versions
<p>A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in
7.8HIGH
 CVE-2020-1224
all versions
<p>An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacke
5.5MEDIUM
 CVE-2020-1504
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1498
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1497
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory. An attacker w
5.5MEDIUM
 CVE-2020-1496
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1495
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1494
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1226
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-1225
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-0906
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-0760
all versions
A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Offic
8.8HIGH
 CVE-2020-0759
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2020-0652
all versions
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in me
7.8HIGH
 CVE-2020-0651
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2020-0650
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2019-1464
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsof
5.5MEDIUM
 CVE-2019-1448
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2019-1446
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsof
5.5MEDIUM
 CVE-2019-1331
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2019-1327
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2019-1297
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2019-1263
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsof
5.5MEDIUM
 CVE-2019-1111
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2019-1110
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
8.8HIGH
 CVE-2019-0828
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2019-0669
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsof
6.5MEDIUM
 CVE-2018-8636
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8627
all versions
An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized var
5.5MEDIUM
 CVE-2018-8598
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsof
4.7MEDIUM
 CVE-2018-8597
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8577
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8502
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in Pro
8.8HIGH
 CVE-2018-8429
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsof
5.5MEDIUM
 CVE-2018-8331
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8382
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsof
5.5MEDIUM
 CVE-2018-8379
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8375
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8246
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsof
5.5MEDIUM
 CVE-2018-8163
all versions
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsof
5.5MEDIUM
 CVE-2018-8162
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8148
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-8147
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-1029
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-1027
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-1011
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-0920
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8HIGH
 CVE-2018-0907
all versions
Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to
7.8HIGH
 CVE-2018-0796
all versions
Microsoft Excel in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote
8.8HIGH
 CVE-2017-11884
all versions
Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to
7.8HIGH
 CVE-2017-11878
all versions
Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 201
7.8HIGH
 CVE-2017-11877
all versions
Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 201
5.5MEDIUM
 CVE-2017-8632
all versions
A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsof
7.8HIGH
 CVE-2017-8631
all versions
A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service
7.8HIGH
 CVE-2017-8502
all versions
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Off
7.8HIGH
 CVE-2017-8501
all versions
Microsoft Office allows a remote code execution vulnerability due to the way that it handles objects in memory, aka "Microsoft Off
7.8HIGH
 CVE-2017-8510
all versions
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka
8.8HIGH
 CVE-2017-0194
all versions
Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, and Office Compatibility Pack SP2 allow remote attackers to obtain sensitive i
5.5MEDIUM
 CVE-2017-0052
all versions
Microsoft Office Compatibility Pack SP3, Excel 2007 SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3 allow remo
7.8HIGH
 CVE-2017-0027
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, and Excel Services on Shar
4.7MEDIUM
 CVE-2017-0020
all versions
Microsoft Excel 2016, Excel 2010 SP2, Excel 2013 RT SP1, and Office Web Apps Server 2013 SP1 allow remote attackers to execute arb
7.8HIGH
 CVE-2017-0006
all versions
Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, and Excel Services on SharePoint Server 2007 SP3 allow remo
7.8HIGH
 CVE-2016-7267
all versions
Microsoft Excel 2010 SP2, 2013 SP1, 2013 RT SP1, and 2016 misparses file formats, which makes it easier for remote attackers to ex
5.5MEDIUM
 CVE-2016-7266
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel View
7.8HIGH
 CVE-2016-7265
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel View
7.1HIGH
 CVE-2016-7264
all versions
Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, Excel Viewer, Excel for Mac 2011, and Excel 2016 for Mac allow remote att
7.1HIGH
 CVE-2016-7262
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, and Excel
7.8HIGH
 CVE-2016-7236
all versions
Microsoft Excel 2010 SP2, Excel for Mac 2011, Excel 2016 for Mac, and Excel Services on SharePoint Server 2010 SP2 allow remote at
7.8HIGH
 CVE-2016-7231
all versions
Microsoft Excel 2007 SP3, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute ar
7.8HIGH
 CVE-2016-7229
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, O
7.8HIGH
 CVE-2016-7228
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, a
7.8HIGH
 CVE-2016-7213
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, a
7.8HIGH
 CVE-2016-3381
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, and Excel
7.8HIGH
 CVE-2016-3365
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel View
7.8HIGH
 CVE-2016-3363
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, and Excel
7.8HIGH
 CVE-2016-3362
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Office Compatibility Pack SP3, Excel View
7.8HIGH
 CVE-2016-3361
all versions
Microsoft Excel 2010 SP2 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Co
7.8HIGH
 CVE-2016-3359
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitr
7.8HIGH
 CVE-2016-3358
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel 2016 for Mac, Office Compatibility
7.8HIGH
 CVE-2016-3284
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, O
7.8HIGH
 CVE-2016-3279
all versions
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Excel 2013 SP1, PowerPoint 2013 SP1, Word 2013 SP1,
5.5MEDIUM
 CVE-2016-3233
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a
7.3HIGH
 CVE-2016-0139
all versions
Microsoft Excel 2010 SP2, Word for Mac 2011, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Offic
7.8HIGH
 CVE-2016-0136
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, Excel Services on SharePoint Server 2007 SP3, and Excel S
7.8HIGH
 CVE-2016-0122
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 for Mac, Office Compatibility P
7.8HIGH
 CVE-2016-0054
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, O
7.8HIGH
 CVE-2016-0035
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, O
7.8HIGH
 CVE-2016-0012
all versions
Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, Po
4.3MEDIUM
 CVE-2015-6177
all versions
Microsoft Excel 2007 SP3, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a c
 CVE-2015-6122
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attacke
 CVE-2015-6040
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Excel 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer
 CVE-2015-6094
all versions
Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, and Excel Service
 CVE-2015-6038
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel 2016 for Mac, O
 CVE-2015-2503
all versions
Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2
 CVE-2015-2558
all versions
Use-after-free vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for
 CVE-2015-2555
all versions
Use-after-free vulnerability in Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Excel for Mac 2011, Excel
 CVE-2015-2523
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel for Mac 2011 and 2016, Office Compatibility Pac
 CVE-2015-2521
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitr
 CVE-2015-2520
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011 and 2016, Office Compatibility Pack SP3, and Excel Viewer allow remot
 CVE-2015-2423
all versions
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold a
 CVE-2015-2415
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, and Office Compatibility Pack SP3 allow remote attack
 CVE-2015-2378
all versions
Untrusted search path vulnerability in Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel Viewer 2007 SP3, and Office Compatibility P
 CVE-2015-2377
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, and Office Compatibility Pack SP3 allow remote attack
 CVE-2015-2376
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Office for Mac 2011, Excel Viewer 2007 SP3, Office Co
 CVE-2015-2375
all versions
Microsoft Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel Viewer 2007 SP3, Excel Services on SharePoint Server 2010 SP2,
 CVE-2015-1682
all versions
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP
 CVE-2015-0097
all versions
Microsoft Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Excel 2010 SP2, PowerPoint 2010 SP2, and Word 2010 SP2 allow remote
 CVE-2015-0085
all versions
Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Ex
 CVE-2015-0063
all versions
Microsoft Excel 2007 SP3; the proofing tools in Office 2010 SP2; Excel 2010 SP2; Excel 2013 Gold, SP1, and RT; Excel Viewer; and O
 CVE-2014-6361
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 Gold and SP1, Excel 2013 RT Gold and SP1, and Office Compatibility Pack allow
 CVE-2014-6360
all versions
Microsoft Excel 2007 SP3, Excel 2010 SP2, and Office Compatibility Pack allow remote attackers to execute arbitrary code via a cra
 CVE-2013-3890
all versions
Microsoft Excel 2007 SP3, Excel Viewer, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a c
 CVE-2013-3889
all versions
Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Ma
 CVE-2013-3159
all versions
Microsoft Excel 2003 SP3, 2007 SP3, and 2010 SP1 and SP2; Excel Viewer; and Microsoft Office Compatibility Pack SP3 allow remote a
 CVE-2013-3158
all versions
Microsoft Excel 2003 SP3 and 2007 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corru
 CVE-2013-1315
all versions
Microsoft SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013; Office Web Apps 2010; Excel 2003 SP3, 2007 SP3, 2010 SP1 and SP2
 CVE-2012-2543
all versions
Stack-based buffer overflow in Microsoft Excel 2007 SP2 and SP3 and 2010 SP1; Office 2011 for Mac; Excel Viewer; and Office Compat
 CVE-2012-1887
all versions
Use-after-free vulnerability in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1, and Office 2008 and 2011 for Mac, allows
 CVE-2012-1886
all versions
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Excel Viewer; and Office Compatibility Pack SP2 and SP3 allow remote att
 CVE-2012-1885
all versions
Heap-based buffer overflow in Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 SP1; Office 2008 and 2011 for Mac; and Office C
 CVE-2012-5672
all versions
Microsoft Excel Viewer (aka Xlview.exe) and Excel in Microsoft Office 2007 (aka Office 12) allow remote attackers to cause a denia
 CVE-2012-1847
all versions
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2008 and 2011 for Mac; Excel Viewer; and Office Compatib
 CVE-2012-0185
all versions
Heap-based buffer overflow in Microsoft Excel 2007 SP2 and SP3 and 2010 Gold and SP1, Excel Viewer, and Office Compatibility Pack
 CVE-2012-0184
all versions
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2008 and 2011 for Mac; Excel Viewer; and Office Compatib
 CVE-2012-0143
all versions
Microsoft Excel 2003 SP3 and Office 2008 for Mac do not properly handle memory during the opening of files, which allows remote at
 CVE-2012-0142
all versions
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2008 for Mac; Excel Viewer; and Office Compatibility Pac
 CVE-2012-0141
all versions
Microsoft Excel 2003 SP3, 2007 SP2 and SP3, and 2010 Gold and SP1; Office 2011 for Mac; Excel Viewer; and Office Compatibility Pac
 CVE-2011-3403
all versions
Microsoft Excel 2003 SP3 and Office 2004 for Mac do not properly handle objects in memory, which allows remote attackers to execut
 CVE-2011-1990
all versions
Microsoft Excel 2007 SP2; Excel in Office 2007 SP2; Excel Viewer SP2; Office Compatibility Pack for Word, Excel, and PowerPoint 20
 CVE-2011-1989
all versions
Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Excel 2010 Gold and SP1; Excel in Office 2010 Gold and SP1; Offic
 CVE-2011-1988
all versions
Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
 CVE-2011-1987
all versions
Array index error in Microsoft Excel 2003 SP3 and 2007 SP2; Excel in Office 2007 SP2; Excel 2010 Gold and SP1; Excel in Office 201
 CVE-2011-1986
all versions
Use-after-free vulnerability in Microsoft Excel 2003 SP3 allows remote attackers to execute arbitrary code via a crafted spreadshe
 CVE-2011-1279
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly va
 CVE-2011-1278
all versions
Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information during parsing of Excel spreadsheets,
 CVE-2011-1277
all versions
Microsoft Excel 2002 SP3, Office 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record informat
 CVE-2011-1276
all versions
Buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter
 CVE-2011-1275
all versions
Microsoft Excel 2002 SP3; Office 2004, 2008, and 2011 for Mac; and Open XML File Format Converter for Mac do not properly validate
 CVE-2011-1274
all versions
Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel View
 CVE-2011-1273
all versions
Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Ma
 CVE-2011-1272
all versions
Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel View
 CVE-2011-0105
all versions
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac obtain a certain length value f
 CVE-2011-0104
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attac
 CVE-2011-0103
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attac
 CVE-2011-0101
all versions
Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a
 CVE-2011-0098
all versions
Integer signedness error in Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Fo
 CVE-2011-0097
all versions
Integer underflow in Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Co
 CVE-2011-0980
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly pa
 CVE-2011-0979
all versions
Microsoft Excel 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004, 2008, and 2011 for Mac; Open XML File Format Converter for Ma
 CVE-2011-0978
all versions
Stack-based buffer overflow in Microsoft Excel 2002 SP3, 2003 SP3, and 2007 SP2; Office 2004 for Mac; Excel Viewer SP2; and Office
 CVE-2011-0977
all versions
Use-after-free vulnerability in Microsoft Office XP SP3, Office 2003 SP3, Office 2007 SP2, Office 2004 and 2008 for Mac, and Open
 CVE-2010-3242
all versions
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record
 CVE-2010-3241
all versions
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate binary
 CVE-2010-3240
all versions
Microsoft Excel 2002 SP3 and 2007 SP2; Excel Viewer SP2; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File F
 CVE-2010-3239
all versions
Microsoft Excel 2002 SP3 does not properly validate record information, which allows remote attackers to execute arbitrary code vi
 CVE-2010-3238
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, and Office 2004 for Mac, does not properly validate binary file-format information, which a
 CVE-2010-3237
all versions
Microsoft Excel 2002 SP3 and Office 2004 for Mac do not properly validate record information, which allows remote attackers to exe
 CVE-2010-3236
all versions
Microsoft Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly va
 CVE-2010-3235
all versions
Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code v
 CVE-2010-3234
all versions
Microsoft Excel 2002 SP3 does not properly validate formula information, which allows remote attackers to execute arbitrary code v
 CVE-2010-3233
all versions
Microsoft Excel 2002 SP3 and 2003 SP3 does not properly validate record information, which allows remote attackers to execute arbi
 CVE-2010-3232
all versions
Microsoft Excel 2003 SP3 and 2007 SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Excel Viewer SP2; and
 CVE-2010-3231
all versions
Microsoft Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly validate record
 CVE-2010-3230
all versions
Integer overflow in Microsoft Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel document with crafted
 CVE-2010-2562
all versions
Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not prop
 CVE-2010-1253
all versions
Microsoft Office Excel 2002 SP3, 2007 SP1, and SP2; Office 2004 for mac; Office 2008 for Mac; Open XML File Format Converter for M
 CVE-2010-1252
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary
 CVE-2010-1251
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary
 CVE-2010-1250
all versions
Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format
 CVE-2010-1249
all versions
Buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format Converter f
 CVE-2010-1248
all versions
Buffer overflow in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary code via a
 CVE-2010-1247
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel file w
 CVE-2010-1246
all versions
Stack-based buffer overflow in Microsoft Office Excel 2002 SP3 allows remote attackers to execute arbitrary code via an Excel file
 CVE-2010-1245
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format C
 CVE-2010-0824
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3 and Office 2004 for Mac allows remote attackers to execute arbitrary
 CVE-2010-0823
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 SP3, 2007 SP1 and SP2; Office 2004 for mac; Office 2008 for Mac
 CVE-2010-0822
all versions
Stack-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 for Mac, Office 2008 for Mac, and Open XML File Format
 CVE-2010-0821
all versions
Unspecified vulnerability in Microsoft Office Excel 2002 SP3, 2003 SP3, 2007 SP1 and SP2; Office 2004 for mac; Office 2008 for Mac
 CVE-2010-0264
all versions
Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac do not properly parse th
 CVE-2010-0263
all versions
Microsoft Office Excel 2007 SP1 and SP2; Office 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and
 CVE-2010-0262
all versions
Microsoft Office Excel 2007 SP1 and SP2 and Office 2004 for Mac do not properly parse the Excel file format, which allows remote a
 CVE-2010-0261
all versions
Heap-based buffer overflow in Microsoft Office Excel 2007 SP1 and SP2 and Office Compatibility Pack for Word, Excel, and PowerPoin
 CVE-2010-0260
all versions
Heap-based buffer overflow in Microsoft Office Excel 2007 SP1 and SP2; Office Excel Viewer SP1 and SP2; and Office Compatibility P
 CVE-2010-0258
all versions
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
7.8HIGH
 CVE-2010-0257
all versions
Microsoft Office Excel 2002 SP3 does not properly parse the Excel file format, which allows remote attackers to execute arbitrary
 CVE-2009-3134
all versions
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
 CVE-2009-3133
all versions
Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter for Mac allow remote attackers t
 CVE-2009-3132
all versions
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
 CVE-2009-3131
all versions
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
 CVE-2009-3130
all versions
Heap-based buffer overflow in Microsoft Office Excel 2002 SP3, Office 2004 and 2008 for Mac, and Open XML File Format Converter fo
 CVE-2009-3129
all versions
Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for
7.8HIGH
 CVE-2009-3128
all versions
Microsoft Office Excel 2002 SP3 and 2003 SP3, and Office Excel Viewer 2003 SP3, does not properly parse the Excel file format, whi
 CVE-2009-3127
all versions
Microsoft Office Excel 2002 SP3 and 2003 SP3, Office 2004 and 2008 for Mac, Open XML File Format Converter for Mac, and Office Exc
 CVE-2009-0238
all versions
Microsoft Office Excel 2000 SP3, 2002 SP3, 2003 SP3, and 2007 SP1; Excel Viewer 2003 Gold and SP3; Excel Viewer; Compatibility Pac
8.8HIGH
 CVE-2008-4266
all versions
Array index vulnerability in Microsoft Office Excel 2000 SP3, 2002 SP3, and 2003 SP3; Excel Viewer 2003 Gold and SP3; Office 2004
 CVE-2008-4019
all versions
Integer overflow in the REPT function in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel
 CVE-2008-3471
all versions
Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2 and SP3, and 2007 Gold and SP1; Office Excel Viewer 20
 CVE-2008-3068
all versions
Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Rev
 CVE-2008-0117
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3 and 2002 SP2, and Office 2004 and 2008 for Mac, allows user-assisted remote
 CVE-2008-0116
all versions
Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, Compatibility Pack, and Office 2004 and 2008 for Mac allows user-assisted
 CVE-2008-0115
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office for Mac 2004 allow
 CVE-2008-0114
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office for Mac 2004 allows user-assisted
 CVE-2008-0112
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3, and Office for Mac 2004 and 2008 allows user-assisted remote attackers to e
 CVE-2008-0111
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2007, Viewer 2003, Compatibility Pack, and Office 2004 for Mac allow
 CVE-2008-0081
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3 through 2003 SP2, Viewer 2003, and Office 2004 for Mac allows user-assisted
9.8CRITICAL
 CVE-2007-3890
all versions
Microsoft Excel in Office 2000 SP3, Office XP SP3, Office 2003 SP2, and Office 2004 for Mac allows remote attackers to execute arb
 CVE-2007-3030
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers to execute arbitrary code via
 CVE-2007-3029
all versions
Unspecified vulnerability in Microsoft Excel 2002 SP3 and 2003 SP2 allows user-assisted remote attackers to execute arbitrary code
 CVE-2007-1756
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and Office Excel 2007 does not properly validate version information, w
 CVE-2007-3490
all versions
Unspecified vulnerability in Microsoft Excel 2003 SP2 allows remote attackers to have an unknown impact via unspecified vectors, p
 CVE-2007-1214
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, and 2004 for Mac allows user-assisted remote attackers to execute arbit
 CVE-2007-1203
all versions
Unspecified vulnerability in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2003 Viewer, 2004 for Mac, and 2007 allows user-assiste
 CVE-2007-0215
all versions
Stack-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, and 2003 Viewer allows user-assisted remote attackers
 CVE-2007-1239
all versions
Microsoft Excel 2003 does not properly parse .XLS files, which allows remote attackers to cause a denial of service (application c
 CVE-2007-0671
all versions
Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote u
8.8HIGH
 CVE-2007-0031
all versions
Heap-based buffer overflow in Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted rem
 CVE-2007-0030
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbit
 CVE-2007-0029
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows user-assisted remote attackers to execute arbit
 CVE-2007-0028
all versions
Microsoft Excel 2000, 2002, 2003, Viewer 2003, Office 2004 for Mac, and Office v.X for Mac does not properly handle certain opcode
 CVE-2007-0027
all versions
Microsoft Excel 2000 SP3, 2002 SP3, 2003 SP2, 2004 for Mac, and v.X for Mac allows remote attackers to execute arbitrary code via
 CVE-2006-3877
all versions
Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X fo
 CVE-2006-3875
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assist
 CVE-2006-3867
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, 2003, 2004 for Mac, v.X for Mac, and Excel Viewer 2003 allows user-assist
 CVE-2006-1309
all versions
Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted LABEL re
 CVE-2006-1308
all versions
Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls
 CVE-2006-1301
all versions
Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted SELECTIO
 CVE-2006-2388
all versions
Microsoft Office Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via malformed cell comments, whi
 CVE-2006-1306
all versions
Microsoft Excel 2000 through 2004 allows user-assisted attackers to execute arbitrary code via a .xls file with a crafted BIFF rec
 CVE-2006-1304
all versions
Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with
 CVE-2006-1302
all versions
Buffer overflow in Microsoft Excel 2000 through 2003 allows user-assisted attackers to execute arbitrary code via a .xls file with
 CVE-2006-3431
all versions
Buffer overflow in certain Asian language versions of Microsoft Excel might allow user-assisted attackers to execute arbitrary cod
 CVE-2006-3014
all versions
Microsoft Excel allows user-assisted attackers to execute arbitrary javascript and redirect users to arbitrary sites via an Excel
 CVE-2006-3059
all versions
Unspecified vulnerability in Microsoft Excel 2000 through 2004 allows remote user-assisted attackers to execute arbitrary code via
 CVE-2006-0030
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-as
 CVE-2006-0029
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-as
 CVE-2006-0028
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-as
 CVE-2005-4131
all versions
Unspecified vulnerability in Microsoft Excel 2000, 2002, and 2003, in Microsoft Office 2000 SP3 and other packages, allows user-as
 CVE-2004-0846
all versions
Unknown vulnerability in Microsoft Excel 2000, 2002, 2001 for Mac, and v.X for Mac allows remote attackers to execute arbitrary co
 CVE-2004-0200
all versions
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, all
 CVE-2002-1143
all versions
Microsoft Word and Excel allow remote attackers to steal sensitive information via certain field codes that insert the information
 CVE-2002-0618
all versions
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code in the Local Compute
 CVE-2002-0617
all versions
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by creating a hyperl
 CVE-2002-0616
all versions
The Macro Security Model in Microsoft Excel 2000 and 2002 for Windows allows remote attackers to execute code by attaching an inli
 CVE-2002-0615
all versions
The Windows Media Active Playlist in Microsoft Windows Media Player 7.1 stores information in a well known location on the local f
 CVE-2002-0152
all versions
Buffer overflow in various Microsoft applications for Macintosh allows remote attackers to cause a denial of service (crash) or ex
 CVE-2001-0718
<= 2002
Vulnerability in (1) Microsoft Excel 2002 and earlier and (2) Microsoft PowerPoint 2002 and earlier allows attackers to bypass mac
 CVE-2000-0765
all versions
Buffer overflow in the HTML interpreter in Microsoft Office 2000 allows an attacker to execute arbitrary commands via a long embed
 CVE-2000-0637
all versions
Microsoft Excel 97 and 2000 allows an attacker to execute arbitrary commands by specifying a malicious .dll using the Register.ID
 CVE-2000-0597
all versions
Microsoft Office 2000 (Excel and PowerPoint) and PowerPoint 97 are marked as safe for scripting, which allows remote attackers to
 CVE-2000-0419
all versions
The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activi
 CVE-2000-0277
all versions
Microsoft Excel 97 and 2000 does not warn the user when executing Excel Macro Language (XLM) macros in external text files, which
 CVE-1999-1055
all versions
Microsoft Excel 97 does not warn the user before executing worksheet functions, which could allow attackers to execute arbitrary c
 CVE-1999-0794
all versions
Microsoft Excel does not warn a user when a macro is present in a Symbolic Link (SYLK) format file.
 CVE-1999-0717
all versions
A remote attacker can disable the virus warning mechanism in Microsoft Excel 97.
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin