Microsoft

Office Online Server

151 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.8

CVE-2020-0695

  • EPSS 0.58%
  • Published 11.02.2020 22:15:16
  • Last modified 21.11.2024 04:54:01

A spoofing vulnerability exists when Office Online Server does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Server Spoofing Vulnerability'.

5.8

CVE-2020-0647

  • EPSS 0.58%
  • Published 14.01.2020 23:15:33
  • Last modified 21.11.2024 04:53:55

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Spoofing Vulnerability'.

5.8

CVE-2019-1445

  • EPSS 0.79%
  • Published 12.11.2019 19:15:15
  • Last modified 21.11.2024 04:36:42

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1447.

5.5

CVE-2019-1446

  • EPSS 8.48%
  • Published 12.11.2019 19:15:15
  • Last modified 21.11.2024 04:36:42

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.

5.8

CVE-2019-1447

  • EPSS 0.79%
  • Published 12.11.2019 19:15:15
  • Last modified 21.11.2024 04:36:43

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1445.

9.3

CVE-2019-1331

  • EPSS 37.25%
  • Published 10.10.2019 14:15:16
  • Last modified 21.11.2024 04:36:29

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1327.

9.3

CVE-2019-1205

  • EPSS 12.24%
  • Published 14.08.2019 21:15:18
  • Last modified 21.11.2024 04:36:14

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1201

  • EPSS 12.4%
  • Published 14.08.2019 21:15:17
  • Last modified 21.11.2024 04:36:13

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1034

  • EPSS 12.93%
  • Published 12.06.2019 14:29:03
  • Last modified 20.05.2025 18:15:38

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1035

  • EPSS 13.05%
  • Published 12.06.2019 14:29:03
  • Last modified 20.05.2025 18:15:39

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...