threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft office long term servicing channel
Product
microsoft office long term servicing channel
300 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2026-33822
all versions
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
6.1
MEDIUM
CVE-2026-33115
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-33114
all versions
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-33095
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32200
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32199
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32198
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32197
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32190
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-32189
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-32188
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2026-23657
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-26113
all versions
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-26112
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-26110
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code
8.4
HIGH
CVE-2026-26109
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-26108
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-26107
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-21514
all versions
Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security
7.8
HIGH
CVE-2026-21511
all versions
Deserialization of untrusted data in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing over a network.
7.5
HIGH
CVE-2026-21261
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5
MEDIUM
CVE-2026-21260
all versions
Exposure of sensitive information to an unauthorized actor in Microsoft Office Outlook allows an unauthorized attacker to perform
7.5
HIGH
CVE-2026-21259
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.
7.8
HIGH
CVE-2026-21258
all versions
Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5
MEDIUM
CVE-2026-21509
all versions
Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security featu
7.8
HIGH
CVE-2026-20957
all versions
Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20956
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20955
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20953
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-20952
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2026-20950
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20949
all versions
Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.
7.8
HIGH
CVE-2026-20948
all versions
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20946
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2026-20944
all versions
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-62564
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62563
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62562
all versions
Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62561
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62560
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62559
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62558
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62557
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-62556
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62555
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.0
HIGH
CVE-2025-62554
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code
8.4
HIGH
CVE-2025-62553
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62552
all versions
Relative path traversal in Microsoft Office Access allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62216
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62205
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62203
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62202
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2025-62201
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62200
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-62199
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-60728
all versions
Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.
4.3
MEDIUM
CVE-2025-60727
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-60726
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2025-60724
all versions
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
9.8
CRITICAL
CVE-2025-59240
all versions
Exposure of sensitive information to an unauthorized actor in Microsoft Office Excel allows an unauthorized attacker to disclose i
5.5
MEDIUM
CVE-2025-59243
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59238
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59236
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-59235
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2025-59234
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59233
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8
HIGH
CVE-2025-59232
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2025-59231
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8
HIGH
CVE-2025-59229
all versions
Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally.
5.5
MEDIUM
CVE-2025-59227
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59226
all versions
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59225
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59224
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59223
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59222
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-59221
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.0
HIGH
CVE-2025-54910
all versions
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-54908
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54907
all versions
Heap-based buffer overflow in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54906
all versions
Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54905
all versions
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
7.1
HIGH
CVE-2025-54904
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54903
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54902
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54901
all versions
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5
MEDIUM
CVE-2025-54900
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54899
all versions
Free of memory not on the heap in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54898
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-54896
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53784
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-53761
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53759
all versions
Use of uninitialized resource in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53741
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53740
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-53739
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8
HIGH
CVE-2025-53738
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53737
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53736
all versions
Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
6.8
MEDIUM
CVE-2025-53735
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53734
all versions
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-53733
all versions
Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-53731
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-53730
all versions
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49711
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49705
all versions
Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49703
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49702
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code
7.8
HIGH
CVE-2025-49700
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49699
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.0
HIGH
CVE-2025-49698
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-49697
all versions
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-49696
all versions
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-49695
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-48812
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
5.5
MEDIUM
CVE-2025-47994
all versions
Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.
7.8
HIGH
CVE-2025-47957
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-47953
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-47176
all versions
'.../...//' in Microsoft Office Outlook allows an authorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47175
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47174
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47173
all versions
Improper input validation in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47171
all versions
Improper input validation in Microsoft Office Outlook allows an authorized attacker to execute code locally.
6.7
MEDIUM
CVE-2025-47170
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47169
all versions
Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47168
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47167
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code
8.4
HIGH
CVE-2025-47165
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-47164
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-47162
all versions
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-32705
all versions
Out-of-bounds read in Microsoft Office Outlook allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-32704
all versions
Buffer over-read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-30393
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-30388
all versions
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-30386
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-30383
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8
HIGH
CVE-2025-30381
all versions
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-30379
all versions
Release of invalid pointer or reference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-30377
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
8.4
HIGH
CVE-2025-30376
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-30375
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute
7.8
HIGH
CVE-2025-29979
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-29978
all versions
Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-29977
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-29822
all versions
Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature loca
7.8
HIGH
CVE-2025-29820
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-29816
all versions
Improper input validation in Microsoft Office Word allows an unauthorized attacker to bypass a security feature over a network.
7.5
HIGH
CVE-2025-29792
all versions
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
7.3
HIGH
CVE-2025-29791
all versions
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code
7.8
HIGH
CVE-2025-27752
all versions
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27751
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27750
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27749
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27748
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27747
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27746
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-27745
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-26642
all versions
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-26630
all versions
Use after free in Microsoft Office Access allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-26629
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24083
all versions
Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24082
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24081
all versions
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24080
all versions
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24079
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24078
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.0
HIGH
CVE-2025-24077
all versions
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24075
all versions
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-24057
all versions
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
7.8
HIGH
CVE-2025-21397
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21394
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21392
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21390
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21387
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21386
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21383
all versions
Microsoft Excel Information Disclosure Vulnerability
7.8
HIGH
CVE-2025-21381
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21395
all versions
Microsoft Access Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21366
all versions
Microsoft Access Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21365
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21364
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8
HIGH
CVE-2025-21363
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21362
all versions
Microsoft Excel Remote Code Execution Vulnerability
8.4
HIGH
CVE-2025-21357
all versions
Microsoft Outlook Remote Code Execution Vulnerability
6.7
MEDIUM
CVE-2025-21356
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21354
all versions
Microsoft Excel Remote Code Execution Vulnerability
8.4
HIGH
CVE-2025-21346
all versions
Microsoft Office Security Feature Bypass Vulnerability
7.1
HIGH
CVE-2025-21345
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2025-21186
all versions
Microsoft Access Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49142
all versions
Microsoft Access Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49069
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49065
all versions
Microsoft Office Remote Code Execution Vulnerability
5.5
MEDIUM
CVE-2024-49059
all versions
Microsoft Office Elevation of Privilege Vulnerability
7.0
HIGH
CVE-2024-49033
all versions
Microsoft Word Security Feature Bypass Vulnerability
7.5
HIGH
CVE-2024-49032
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49031
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49030
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49029
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49028
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49027
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-49026
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-43616
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-43609
all versions
Microsoft Office Spoofing Vulnerability
6.5
MEDIUM
CVE-2024-43576
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-43505
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-43504
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-38016
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-43465
all versions
Microsoft Excel Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2024-43463
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-38250
all versions
Windows Graphics Component Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2024-38226
all versions
Microsoft Publisher Security Feature Bypass Vulnerability
7.3
HIGH
CVE-2024-38189
all versions
Microsoft Project Remote Code Execution Vulnerability
8.8
HIGH
CVE-2024-38173
all versions
Microsoft Outlook Remote Code Execution Vulnerability
6.7
MEDIUM
CVE-2024-38172
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-38171
all versions
Microsoft PowerPoint Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-38170
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.1
HIGH
CVE-2024-38169
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-38200
all versions
Microsoft Office Spoofing Vulnerability
6.5
MEDIUM
CVE-2024-38021
all versions
Microsoft Outlook Remote Code Execution Vulnerability
8.8
HIGH
CVE-2024-38020
all versions
Microsoft Outlook Spoofing Vulnerability
6.5
MEDIUM
CVE-2024-30042
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-21413
all versions
Microsoft Outlook Remote Code Execution Vulnerability
9.8
CRITICAL
CVE-2024-21384
all versions
Microsoft Office OneNote Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-21379
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2024-21378
all versions
Microsoft Outlook Remote Code Execution Vulnerability
8.8
HIGH
CVE-2024-20677
all versions
A security vulnerability exists in FBX that could lead to remote code execution. To mitigate this vulnerability, the ability to in
7.8
HIGH
CVE-2023-35636
all versions
Microsoft Outlook Information Disclosure Vulnerability
6.5
MEDIUM
CVE-2023-35619
all versions
Microsoft Outlook for Mac Spoofing Vulnerability
5.3
MEDIUM
CVE-2023-36413
all versions
Microsoft Office Security Feature Bypass Vulnerability
6.5
MEDIUM
CVE-2023-36045
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-36041
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-36037
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8
HIGH
CVE-2023-36569
all versions
Microsoft Office Elevation of Privilege Vulnerability
8.4
HIGH
CVE-2023-36568
all versions
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
7.0
HIGH
CVE-2023-36565
all versions
Microsoft Office Graphics Elevation of Privilege Vulnerability
7.0
HIGH
CVE-2023-41764
all versions
Microsoft Office Spoofing Vulnerability
5.5
MEDIUM
CVE-2023-36767
all versions
Microsoft Office Security Feature Bypass Vulnerability
4.3
MEDIUM
CVE-2023-36766
all versions
Microsoft Excel Information Disclosure Vulnerability
7.8
HIGH
CVE-2023-36763
all versions
Microsoft Outlook Information Disclosure Vulnerability
7.5
HIGH
CVE-2023-36762
all versions
Microsoft Word Remote Code Execution Vulnerability
7.3
HIGH
CVE-2023-36761
all versions
Microsoft Word Information Disclosure Vulnerability
6.5
MEDIUM
CVE-2023-36896
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-36895
all versions
Microsoft Outlook Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-36893
all versions
Microsoft Outlook Spoofing Vulnerability
6.5
MEDIUM
CVE-2023-36866
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-36865
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-35372
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-35371
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-35311
all versions
Microsoft Outlook Security Feature Bypass Vulnerability
8.8
HIGH
CVE-2023-28295
all versions
Microsoft Publisher Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-28287
all versions
Microsoft Publisher Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-33146
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-33133
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-33131
all versions
Microsoft Outlook Remote Code Execution Vulnerability
8.8
HIGH
CVE-2023-32029
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-29344
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-35742
all versions
Microsoft Outlook Denial of Service Vulnerability
7.5
HIGH
CVE-2023-24953
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-28311
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-28285
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-24910
all versions
Windows Graphics Component Elevation of Privilege Vulnerability
7.8
HIGH
CVE-2023-23399
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-23397
all versions
Microsoft Outlook Elevation of Privilege Vulnerability
9.8
CRITICAL
CVE-2023-21716
all versions
Microsoft Word Remote Code Execution Vulnerability
9.8
CRITICAL
CVE-2023-21714
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2023-21741
all versions
Microsoft Office Visio Information Disclosure Vulnerability
7.1
HIGH
CVE-2023-21738
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-21737
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-21736
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-21735
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-21734
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-44713
all versions
Microsoft Outlook for Mac Spoofing Vulnerability
7.5
HIGH
CVE-2022-44692
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-44691
all versions
Microsoft Office OneNote Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-41043
all versions
Microsoft Office Information Disclosure Vulnerability
3.3
LOW
CVE-2022-41031
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-38049
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-38048
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-38001
all versions
Microsoft Office Spoofing Vulnerability
6.5
MEDIUM
CVE-2022-38010
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-37963
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-37962
all versions
Microsoft PowerPoint Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-34717
all versions
Microsoft Office Remote Code Execution Vulnerability
8.8
HIGH
CVE-2022-33631
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.3
HIGH
CVE-2022-33632
all versions
Microsoft Office Security Feature Bypass Vulnerability
4.7
MEDIUM
CVE-2022-30174
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-23252
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-22716
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-22003
all versions
Microsoft Office Graphics Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-21988
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-42292
all versions
Microsoft Excel Security Feature Bypass Vulnerability
7.8
HIGH
CVE-2021-41368
all versions
Microsoft Access Remote Code Execution Vulnerability
6.1
MEDIUM
CVE-2021-40442
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40485
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40481
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.1
HIGH
CVE-2021-40480
all versions
Microsoft Office Visio Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40479
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40474
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40473
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40472
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2021-40471
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin