threat
engine
.sh
Back
·
··:··
Home
/
Product
/
microsoft office web apps server
Product
microsoft office web apps server
62 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-23399
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2023-23396
all versions
Microsoft Excel Denial of Service Vulnerability
6.5
MEDIUM
CVE-2022-41106
all versions
Microsoft Excel Remote Code Execution Vulnerability
8.8
HIGH
CVE-2022-41103
all versions
Microsoft Word Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-41063
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-41061
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-41060
all versions
Microsoft Word Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-30173
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-30172
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-30171
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-30159
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2022-29110
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2022-26901
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40442
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40486
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40474
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-40472
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2021-34518
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31939
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31179
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31178
all versions
Microsoft Office Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2021-31177
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31176
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31175
all versions
Microsoft Office Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-31174
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2021-28456
all versions
Microsoft Excel Information Disclosure Vulnerability
5.5
MEDIUM
CVE-2021-28454
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-28453
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-28451
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-1716
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-1715
all versions
Microsoft Word Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-1714
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2021-1713
all versions
Microsoft Excel Remote Code Execution Vulnerability
7.8
HIGH
CVE-2019-1201
all versions
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An att
7.8
HIGH
CVE-2019-0585
all versions
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "M
8.8
HIGH
CVE-2019-0561
all versions
An information disclosure vulnerability exists when Microsoft Word macro buttons are used improperly, aka "Microsoft Word Informat
5.5
MEDIUM
CVE-2018-8577
all versions
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in mem
7.8
HIGH
CVE-2018-0919
all versions
Microsoft Office 2010 SP2, 2013 SP1, and 2016, Microsoft Office 2016 Click-to-Run Microsoft Office 2016 for Mac, Microsoft Office
3.3
LOW
CVE-2018-0797
all versions
Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allow a remote code execution vulnerability due to the way
7.8
HIGH
CVE-2017-11826
all versions
Microsoft Office 2010, SharePoint Enterprise Server 2010, SharePoint Server 2010, Web Applications, Office Web Apps Server 2010 an
7.8
HIGH
CVE-2017-8742
all versions
A remote code execution vulnerability exists in Microsoft PowerPoint 2007 Service Pack 3, Microsoft PowerPoint 2010 Service Pack 2
7.8
HIGH
CVE-2017-8512
all versions
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka
8.8
HIGH
CVE-2017-8511
all versions
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka
7.8
HIGH
CVE-2017-8509
all versions
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka
8.8
HIGH
CVE-2017-0195
all versions
Microsoft Excel Services on Microsoft SharePoint Server 2010 SP1 and SP2, Microsoft Excel Web Apps 2010 SP2, Microsoft Office Web
5.4
MEDIUM
CVE-2016-3360
all versions
Microsoft PowerPoint 2007 SP3, PowerPoint 2010 SP2, PowerPoint 2013 SP1, PowerPoint 2013 RT SP1, PowerPoint 2016 for Mac, Office C
7.8
HIGH
CVE-2016-3357
all versions
Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Word for Mac 2011, Word 2016 for Mac
7.8
HIGH
CVE-2016-3282
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016
7.8
HIGH
CVE-2016-0025
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office 2016, Word 2016, Word for Mac 201
7.3
HIGH
CVE-2016-0127
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office Compatibility Pack SP3, Word View
7.8
HIGH
CVE-2016-0134
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016
7.8
HIGH
CVE-2016-0053
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Office Compatibility Pack SP3
7.8
HIGH
CVE-2016-0052
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016
7.8
HIGH
CVE-2016-0022
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016
7.8
HIGH
CVE-2015-6093
all versions
Microsoft Office 2007 SP3, Office 2010 SP2, Office 2013 SP1, Office 2013 RT SP1, Office 2016, Word Automation Services on SharePoi
CVE-2015-1682
all versions
Microsoft Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Word 2010 SP2, Office 2013 SP1, Excel 2013 SP1, PowerPoint 2013 SP
CVE-2015-0086
all versions
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Co
CVE-2015-0085
all versions
Use-after-free vulnerability in Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Word 2007 SP3, Office 2010 SP2, Ex
CVE-2014-1754
all versions
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2013 Gold and SP1, SharePoint Foundation 2013 Gold and SP1
CVE-2014-0251
all versions
Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Fou
CVE-2014-1761
all versions
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Word Viewer; Office Compatibility Pack SP3; Office for Mac
7.8
HIGH
CVE-2014-0260
all versions
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office Compatibility Pack SP3; Word Viewer; SharePoint Ser
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin