Vulnerabilities (CVE)

Vendor filter

Microsoft Subscribe

Product filter

Office 365 Proplus Subscribe

Filter

47 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1084 1 Microsoft 9 Exchange Server, Lync, Lync Basic and 6 more 2019-07-22 4.0
An information disclosure vulnerability exists when Exchange allows creation of entities with Display Names having non-printable characters. An authenticated attacker could exploit this vulnerability by creating entities with invalid display...
CVE-2019-1110 1 Microsoft 3 Excel, Office, Office 365 Proplus 2019-07-17 9.3
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1111.
CVE-2019-1111 1 Microsoft 3 Excel, Office, Office 365 Proplus 2019-07-17 9.3
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1110.
CVE-2019-1112 1 Microsoft 2 Office, Office 365 Proplus 2019-07-17 4.3
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.
CVE-2019-1035 1 Microsoft 4 Office, Office 365 Proplus, Office Online Server and 1 more 2019-06-14 9.3
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1034.
CVE-2019-1034 1 Microsoft 7 Office, Office 365 Proplus, Office Online Server and 4 more 2019-06-13 9.3
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1035.
CVE-2019-0946 1 Microsoft 2 Office, Office 365 Proplus 2019-05-17 9.3
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0953 1 Microsoft 4 Office, Office 365 Proplus, Office Online Server and 1 more 2019-05-16 9.3
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.
CVE-2019-0801 1 Microsoft 2 Office, Office 365 Proplus 2019-04-15 6.8
A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or...
CVE-2019-0822 1 Microsoft 2 Office, Office 365 Proplus 2019-04-10 9.3
A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka 'Microsoft Graphics Components Remote Code Execution Vulnerability'.
CVE-2019-0824 1 Microsoft 2 Office, Office 365 Proplus 2019-04-10 6.8
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0825 1 Microsoft 2 Office, Office 365 Proplus 2019-04-10 6.8
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0827 1 Microsoft 2 Office, Office 365 Proplus 2019-04-10 6.8
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0826 1 Microsoft 2 Office, Office 365 Proplus 2019-04-10 6.8
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0828 1 Microsoft 2 Excel, Office 365 Proplus 2019-04-10 9.3
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
CVE-2019-0541 1 Microsoft 5 Excel Viewer, Internet Explorer, Office and 2 more 2019-03-14 9.3
A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9,...
CVE-2019-0669 1 Microsoft 5 Excel, Excel Viewer, Office and 2 more 2019-03-08 4.3
An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.
CVE-2019-0540 1 Microsoft 5 Excel Viewer, Office, Office 365 Proplus and 2 more 2019-03-07 4.3
A security feature bypass vulnerability exists when Microsoft Office does not validate URLs.An attacker could send a victim a specially crafted file, which could trick the victim into entering credentials, aka 'Microsoft Office Security Feature...
CVE-2019-0671 1 Microsoft 2 Office, Office 365 Proplus 2019-03-06 9.3
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...
CVE-2019-0672 1 Microsoft 2 Office, Office 365 Proplus 2019-03-06 9.3
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique...