Search Results (319 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2010-2747 1 Microsoft 2 Office, Word 2025-04-11 N/A
Microsoft Word 2002 SP3 and Office 2004 for Mac do not properly handle an uninitialized pointer during parsing of a Word document, which allows remote attackers to execute arbitrary code via a crafted document that triggers memory corruption, aka "Word Uninitialized Pointer Vulnerability."
CVE-2010-3214 1 Microsoft 7 Office, Office Compatibility Pack, Office Web Apps and 4 more 2025-04-11 N/A
Stack-based buffer overflow in Microsoft Word 2002 SP3, 2003 SP3, 2007 SP2, and 2010; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats SP2; Word Viewer; Office Web Apps; and Word Web App allows remote attackers to execute arbitrary code via a crafted Word document, aka "Word Stack Overflow Vulnerability."
CVE-2013-6801 1 Microsoft 2 Windows Xp, Word 2025-04-11 N/A
Microsoft Word 2003 SP2 and SP3 on Windows XP SP3 allows remote attackers to cause a denial of service (CPU consumption) via a malformed .doc file containing an embedded image, as demonstrated by word2003forkbomb.doc, related to a "fork bomb" issue.
CVE-2013-0006 1 Microsoft 15 Expression Web, Groove Server, Office and 12 more 2025-04-11 8.8 High
Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Truncation Vulnerability."
CVE-2014-0259 1 Microsoft 2 Office Compatibility Pack, Word 2025-04-11 N/A
Microsoft Word 2007 SP3 and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Word Memory Corruption Vulnerability."
CVE-2023-21716 1 Microsoft 8 Office, Office Long Term Servicing Channel, Office Online Server and 5 more 2025-02-28 9.8 Critical
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-26903 1 Microsoft 27 Excel, Excel Mobile, Powerpoint and 24 more 2025-01-02 7.8 High
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-21842 1 Microsoft 3 Sharepoint Enterprise Server, Sharepoint Server, Word 2025-01-02 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-40486 1 Microsoft 6 Office, Office Online Server, Office Web Apps Server and 3 more 2024-11-21 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-34452 1 Microsoft 3 365 Apps, Office, Word 2024-11-21 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-31180 1 Microsoft 3 365 Apps, Office, Word 2024-11-21 7.8 High
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2021-31178 1 Microsoft 6 365 Apps, Excel, Office and 3 more 2024-11-21 5.5 Medium
Microsoft Office Information Disclosure Vulnerability
CVE-2021-31177 1 Microsoft 6 365 Apps, Excel, Office and 3 more 2024-11-21 7.8 High
Microsoft Office Remote Code Execution Vulnerability
CVE-2021-28453 1 Microsoft 8 365 Apps, Excel, Office and 5 more 2024-11-21 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-1716 1 Microsoft 9 365 Apps, Excel, Office and 6 more 2024-11-21 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-1715 1 Microsoft 9 365 Apps, Excel, Office and 6 more 2024-11-21 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2020-1448 1 Microsoft 7 Office, Office Online Server, Office Web Apps and 4 more 2024-11-21 8.8 High
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1447.
CVE-2020-1447 1 Microsoft 8 365 Apps, Office, Office Online Server and 5 more 2024-11-21 8.8 High
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.
CVE-2020-1446 1 Microsoft 8 365 Apps, Office, Office Online Server and 5 more 2024-11-21 8.8 High
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.
CVE-2020-1445 1 Microsoft 6 365 Apps, Office, Office Online Server and 3 more 2024-11-21 5.5 Medium
An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1342.