Search Results (319 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2026-40361 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-06-03 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-40367 1 Microsoft 13 365 Apps, Office, Office 2019 and 10 more 2026-06-01 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-40421 1 Microsoft 8 365 Apps, Office, Office 2019 and 5 more 2026-06-01 4.3 Medium
Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
CVE-2026-40366 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-06-01 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2022-41061 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-41103 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2022-41060 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2022-29107 1 Microsoft 5 365 Apps, Office, Office Long Term Servicing Channel and 2 more 2026-05-19 5.5 Medium
Microsoft Office Security Feature Bypass Vulnerability
CVE-2023-33150 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-05-19 9.6 Critical
Microsoft Office Security Feature Bypass Vulnerability
CVE-2022-24511 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-05-19 5.5 Medium
Microsoft Office Word Tampering Vulnerability
CVE-2023-29335 1 Microsoft 16 365 Apps, Office, Office Long Term Servicing Channel and 13 more 2026-05-19 7.5 High
Microsoft Word Security Feature Bypass Vulnerability
CVE-2024-20673 1 Microsoft 8 Excel, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 7.8 High
Microsoft Office Remote Code Execution Vulnerability
CVE-2026-42832 1 Microsoft 8 Excel, Excel For Android, Office and 5 more 2026-05-19 7.7 High
Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.
CVE-2026-35440 1 Microsoft 8 365 Apps, Office, Office 2019 and 5 more 2026-05-19 5.5 Medium
Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
CVE-2026-40364 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-05-19 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-41101 1 Microsoft 2 Word, Word For Android 2026-05-16 7.1 High
Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally.
CVE-2007-0515 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Unspecified vulnerability in Microsoft Word allows user-assisted remote attackers to execute arbitrary code on Word 2000, and cause a denial of service on Word 2003, via unknown attack vectors that trigger memory corruption, as exploited by Trojan.Mdropper.W and later by Trojan.Mdropper.X, a different issue than CVE-2006-6456, CVE-2006-5994, and CVE-2006-6561.
CVE-2007-0208 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code.
CVE-2006-6561 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Unspecified vulnerability in Microsoft Word 2000, 2002, and Word Viewer 2003 allows user-assisted remote attackers to execute arbitrary code via a crafted DOC file that triggers memory corruption, as demonstrated via the 12122006-djtest.doc file, a different issue than CVE-2006-5994 and CVE-2006-6456.
CVE-2006-6456 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.