Microsoft

Office Online Server

151 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.8

CVE-2020-0695

  • EPSS 0.58%
  • Veröffentlicht 11.02.2020 22:15:16
  • Zuletzt bearbeitet 21.11.2024 04:54:01

A spoofing vulnerability exists when Office Online Server does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Server Spoofing Vulnerability'.

5.8

CVE-2020-0647

  • EPSS 0.58%
  • Veröffentlicht 14.01.2020 23:15:33
  • Zuletzt bearbeitet 21.11.2024 04:53:55

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications correctly, aka 'Microsoft Office Online Spoofing Vulnerability'.

5.8

CVE-2019-1445

  • EPSS 0.79%
  • Veröffentlicht 12.11.2019 19:15:15
  • Zuletzt bearbeitet 21.11.2024 04:36:42

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1447.

5.5

CVE-2019-1446

  • EPSS 8.48%
  • Veröffentlicht 12.11.2019 19:15:15
  • Zuletzt bearbeitet 21.11.2024 04:36:42

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.

5.8

CVE-2019-1447

  • EPSS 0.79%
  • Veröffentlicht 12.11.2019 19:15:15
  • Zuletzt bearbeitet 21.11.2024 04:36:43

A spoofing vulnerability exists when Office Online does not validate origin in cross-origin communications handlers correctly, aka 'Microsoft Office Online Spoofing Vulnerability'. This CVE ID is unique from CVE-2019-1445.

9.3

CVE-2019-1331

  • EPSS 37.25%
  • Veröffentlicht 10.10.2019 14:15:16
  • Zuletzt bearbeitet 21.11.2024 04:36:29

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1327.

9.3

CVE-2019-1205

  • EPSS 12.24%
  • Veröffentlicht 14.08.2019 21:15:18
  • Zuletzt bearbeitet 21.11.2024 04:36:14

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1201

  • EPSS 12.4%
  • Veröffentlicht 14.08.2019 21:15:17
  • Zuletzt bearbeitet 21.11.2024 04:36:13

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1034

  • EPSS 12.93%
  • Veröffentlicht 12.06.2019 14:29:03
  • Zuletzt bearbeitet 20.05.2025 18:15:38

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...

9.3

CVE-2019-1035

  • EPSS 13.05%
  • Veröffentlicht 12.06.2019 14:29:03
  • Zuletzt bearbeitet 20.05.2025 18:15:39

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security...