Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Microsoft Subscribe
Filtered by product Word
Total 219 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-1716 1 Microsoft 8 365 Apps, Office, Office Online Server and 5 more 2023-12-29 9.3 HIGH 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-1715 1 Microsoft 8 365 Apps, Office, Office Online Server and 5 more 2023-12-29 9.3 HIGH 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-28453 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2023-12-29 6.8 MEDIUM 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2021-31180 1 Microsoft 3 365 Apps, Office, Word 2023-12-29 6.8 MEDIUM 7.8 HIGH
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2021-31177 1 Microsoft 6 365 Apps, Excel, Office and 3 more 2023-12-29 6.8 MEDIUM 7.8 HIGH
Microsoft Office Remote Code Execution Vulnerability
CVE-2022-21842 1 Microsoft 2 Sharepoint Enterprise Server, Word 2023-12-21 6.8 MEDIUM 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-29107 1 Microsoft 4 365 Apps, Office, Publisher and 1 more 2023-12-21 4.3 MEDIUM 5.5 MEDIUM
Microsoft Office Security Feature Bypass Vulnerability
CVE-2000-0788 1 Microsoft 2 Access, Word 2023-11-07 10.0 HIGH N/A
The Mail Merge tool in Microsoft Word does not prompt the user before executing Visual Basic (VBA) scripts in an Access database, which could allow an attacker to execute arbitrary commands.
CVE-2021-31178 1 Microsoft 6 365 Apps, Excel, Office and 3 more 2023-08-02 4.3 MEDIUM 5.5 MEDIUM
Microsoft Office Information Disclosure Vulnerability
CVE-2021-40486 1 Microsoft 6 Office, Office Online Server, Office Web Apps Server and 3 more 2023-08-01 6.8 MEDIUM 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2023-33150 1 Microsoft 3 365 Apps, Office, Word 2023-07-14 N/A 9.6 CRITICAL
Microsoft Office Security Feature Bypass Vulnerability
CVE-2022-24511 1 Microsoft 3 365 Apps, Office, Word 2023-06-29 1.9 LOW 5.5 MEDIUM
Microsoft Office Word Tampering Vulnerability
CVE-2022-26903 1 Microsoft 16 Excel, Excel Mobile, Powerpoint and 13 more 2023-06-29 9.3 HIGH 7.8 HIGH
Windows Graphics Component Remote Code Execution Vulnerability
CVE-2022-41103 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2023-03-10 N/A 5.5 MEDIUM
Microsoft Word Information Disclosure Vulnerability
CVE-2022-41061 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2023-03-10 N/A 7.8 HIGH
Microsoft Word Remote Code Execution Vulnerability
CVE-2022-41060 1 Microsoft 7 365 Apps, Office, Office Online Server and 4 more 2023-03-10 N/A 5.5 MEDIUM
Microsoft Word Information Disclosure Vulnerability
CVE-1999-0354 1 Microsoft 2 Internet Explorer, Word 2021-07-22 7.5 HIGH N/A
Internet Explorer 4.x or 5.x with Word 97 allows arbitrary execution of Visual Basic programs to the IE client through the Word 97 template, which doesn't warn the user that the template contains executable content. Also applies to Outlook when the client views a malicious email message.
CVE-2020-0850 1 Microsoft 7 Office, Office 365 Proplus, Office Online Server and 4 more 2021-07-21 6.8 MEDIUM 8.8 HIGH
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0851, CVE-2020-0852, CVE-2020-0855, CVE-2020-0892.
CVE-2020-1447 1 Microsoft 8 365 Apps, Office, Office Online Server and 5 more 2021-07-21 6.8 MEDIUM 8.8 HIGH
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1448.
CVE-2020-0980 1 Microsoft 7 Office, Office 365 Proplus, Office Online Server and 4 more 2021-07-21 9.3 HIGH 7.8 HIGH
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.