Search Results (319 CVEs found)

CVE Vendors Products Updated CVSS v3.1
CVE-2026-40361 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-06-03 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-40367 1 Microsoft 13 365 Apps, Office, Office 2019 and 10 more 2026-06-01 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-40421 1 Microsoft 8 365 Apps, Office, Office 2019 and 5 more 2026-06-01 4.3 Medium
Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
CVE-2026-40366 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-06-01 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2022-41060 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2023-29335 1 Microsoft 16 365 Apps, Office, Office Long Term Servicing Channel and 13 more 2026-05-19 7.5 High
Microsoft Word Security Feature Bypass Vulnerability
CVE-2023-33150 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-05-19 9.6 Critical
Microsoft Office Security Feature Bypass Vulnerability
CVE-2026-42832 1 Microsoft 8 Excel, Excel For Android, Office and 5 more 2026-05-19 7.7 High
Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.
CVE-2022-41103 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2022-41061 1 Microsoft 8 365 Apps, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-29107 1 Microsoft 5 365 Apps, Office, Office Long Term Servicing Channel and 2 more 2026-05-19 5.5 Medium
Microsoft Office Security Feature Bypass Vulnerability
CVE-2024-20673 1 Microsoft 8 Excel, Office, Office Long Term Servicing Channel and 5 more 2026-05-19 7.8 High
Microsoft Office Remote Code Execution Vulnerability
CVE-2022-24511 1 Microsoft 4 365 Apps, Office, Office Long Term Servicing Channel and 1 more 2026-05-19 5.5 Medium
Microsoft Office Word Tampering Vulnerability
CVE-2026-35440 1 Microsoft 8 365 Apps, Office, Office 2019 and 5 more 2026-05-19 5.5 Medium
Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.
CVE-2026-40364 1 Microsoft 10 365 Apps, Office, Office 2019 and 7 more 2026-05-19 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVE-2026-41101 1 Microsoft 2 Word, Word For Android 2026-05-16 7.1 High
Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally.
CVE-2007-1911 1 Microsoft 1 Word 2026-04-23 N/A
Multiple unspecified vulnerabilities in Microsoft Word 2007 allow remote attackers to cause a denial of service (CPU consumption) via crafted documents, as demonstrated by (1) file798-1.doc and (2) file613-1.doc, possibly related to a buffer overflow.
CVE-2007-0208 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Microsoft Word in Office 2000 SP3, XP SP3, Office 2003 SP2, Works Suite 2004 to 2006, and Office 2004 for Mac does not correctly check the properties of certain documents and warn the user of macro content, which allows user-assisted remote attackers to execute arbitrary code.
CVE-2006-5994 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Unspecified vulnerability in Microsoft Word 2000 and 2002, Office Word and Word Viewer 2003, Word 2004 and 2004 v. X for Mac, and Works 2004, 2005, and 2006 allows remote attackers to execute arbitrary code via a Word document with a malformed string that triggers memory corruption, a different vulnerability than CVE-2006-6456.
CVE-2006-6456 1 Microsoft 4 Office, Word, Word Viewer and 1 more 2026-04-23 N/A
Unspecified vulnerability in Microsoft Word 2000, 2002, and 2003 and Word Viewer 2003 allows remote attackers to execute code via unspecified vectors related to malformed data structures that trigger memory corruption, a different vulnerability than CVE-2006-5994.