Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog Docs About Contact

microsoft vulnerabilities and exploits

(subscribe to this query)
8.8
CVSSv3

CVE-2020-0760

A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.
Microsoft Microsoft ProjectMicrosoft Microsoft OfficeMicrosoft Office 365 ProplusMicrosoft Microsoft ExcelMicrosoft Microsoft PowerpointMicrosoft Microsoft VisioMicrosoft Microsoft WordMicrosoft Microsoft Publisher 2016 (32-bit Edition)Microsoft Microsoft Publisher 2016 (64-bit Edition)Microsoft Microsoft AccessMicrosoft Microsoft OutlookMicrosoft Microsoft Publisher 2013 Service Pack 1 (32-bit Editions)
4.6
CVSSv2

CVE-2004-2730

Sysinternals PsTools prior to 2.05, including (1) PsExec prior to 1.54, (2) PsGetsid prior to 1.41, (3) PsInfo prior to 1.61, (4) PsKill prior to 1.03, (5) PsList prior to 1.26, (6) PsLoglist prior to 2.51, (7) PsPasswd prior to 1.21, (8) PsService prior to 2.12, (9) PsSuspend pr...
Microsoft PsexecMicrosoft PsgetsidMicrosoft PsinfoMicrosoft PskillMicrosoft PslistMicrosoft PsloglistMicrosoft PspasswdMicrosoft PsserviceMicrosoft PsshutdownMicrosoft PssuspendMicrosoft Sysinternals Pstools
7.5
CVSSv3

CVE-2017-0247

A denial of service vulnerability exists when the ASP.NET Core fails to properly validate web requests. NOTE: Microsoft has not commented on third-party claims that the issue is that the TextEncoder.EncodeCore function in the System.Text.Encodings.Web package in ASP.NET Core Mvc ...
Microsoft Corporation Asp.net CoreMicrosoft Asp.net Model View Controller 1.0.0Microsoft Asp.net Model View Controller 1.0.1Microsoft Asp.net Model View Controller 1.0.2Microsoft Asp.net Model View Controller 1.0.3Microsoft Asp.net Model View Controller 1.1.0Microsoft Asp.net Model View Controller 1.1.1Microsoft Asp.net Model View Controller 1.1.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.1Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.3
7.3
CVSSv3

CVE-2017-0249

An elevation of privilege vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Corporation Asp.net CoreMicrosoft Asp.net Model View Controller 1.0.0Microsoft Asp.net Model View Controller 1.0.1Microsoft Asp.net Model View Controller 1.0.2Microsoft Asp.net Model View Controller 1.0.3Microsoft Asp.net Model View Controller 1.1.0Microsoft Asp.net Model View Controller 1.1.1Microsoft Asp.net Model View Controller 1.1.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.1Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.3
5.3
CVSSv3

CVE-2017-0256

A spoofing vulnerability exists when the ASP.NET Core fails to properly sanitize web requests.
Microsoft Corporation Asp.net CoreMicrosoft Asp.net Model View Controller 1.0.0Microsoft Asp.net Model View Controller 1.0.1Microsoft Asp.net Model View Controller 1.0.2Microsoft Asp.net Model View Controller 1.0.3Microsoft Asp.net Model View Controller 1.1.0Microsoft Asp.net Model View Controller 1.1.1Microsoft Asp.net Model View Controller 1.1.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.0Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.1Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.2Microsoft Microsoft.aspnetcore.mvc.abstractions 1.0.3
7.8
CVSSv3

CVE-2024-20673

Microsoft Office Remote Code Execution Vulnerability
Microsoft Microsoft Office 2019Microsoft Microsoft Office Ltsc 2021Microsoft Microsoft Excel 2016Microsoft Microsoft Office 2016Microsoft Microsoft Powerpoint 2016Microsoft Microsoft Visio 2016Microsoft Microsoft Word 2016Microsoft Microsoft Publisher 2016Microsoft Skype For Business 2016Microsoft OfficeMicrosoft Office Long Term Servicing ChannelMicrosoft Excel
9.3
CVSSv2

CVE-2006-3877

Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted malicious users to execute arbitrary code via an unspecified "crafted file," a different vulnerability than CVE-2...
Microsoft Access 2000Microsoft Access 2002Microsoft Access 2003Microsoft Excel 2000Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel Viewer 2003Microsoft Frontpage 2000Microsoft Frontpage 2002Microsoft Frontpage 2003Microsoft Infopath 2003Microsoft Office 2000
9.3
CVSSv2

CVE-2007-0671

Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted malicious users to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.
Microsoft Access 2000Microsoft Access 2002Microsoft Access 2003Microsoft Excel 2000Microsoft Excel 2002Microsoft Excel 2003Microsoft Excel 2004Microsoft Excel Viewer 2003Microsoft Frontpage 2000Microsoft Frontpage 2002Microsoft Frontpage 2003Microsoft Infopath 2003
8.8
CVSSv3

CVE-2020-1494

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Office 2019Microsoft 365 Apps -Microsoft Excel 2016Microsoft Office 2016Microsoft Excel 2010Microsoft Excel 2013Microsoft Office 2013Microsoft Microsoft Office 2019Microsoft Microsoft 365 Apps For EnterpriseMicrosoft Microsoft Excel 2016Microsoft Microsoft Office 2016Microsoft Microsoft Excel 2010 Service Pack 2
8.8
CVSSv3

CVE-2020-1496

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logg...
Microsoft Office 2019Microsoft 365 Apps -Microsoft Excel 2016Microsoft Office 2016Microsoft Excel 2010Microsoft Excel 2013Microsoft Office 2013Microsoft Microsoft Office 2019Microsoft Microsoft 365 Apps For EnterpriseMicrosoft Microsoft Excel 2016Microsoft Microsoft Office 2016Microsoft Microsoft Excel 2010 Service Pack 2
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
injectCVE-2025-51381IDORnvidiaCVE-2025-4123CVE-2025-2783CVE-2025-30678remote attackersCVE-2025-48443kcm3100CVE-2025-6196tarteaucitron.ioadrian ladóearch icon">CVE-2023-33538
Home
/
Search Results
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook