CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24079 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24079
11 Mar 2025 — Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24079 • CWE-416: Use After Free •
CVSS: 7.0EPSS: 0%CPEs: 3EXPL: 0CVE-2025-24078 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2025-24078
11 Mar 2025 — Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24078 • CWE-416: Use After Free •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-41165
https://notcve.org/view.php?id=CVE-2024-41165
18 Dec 2024 — A library injection vulnerability exists in Microsoft Word 16.83 for macOS. A specially crafted library can leverage Word's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions. Existe una vulnerabilidad de inyección de librería en Microsoft Word 16.83 para macOS. Una librería especialmente manipulada puede aprovechar los privilegios de acceso de Word... • https://talosintelligence.com/vulnerability_reports/TALOS-2024-1977 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-49065 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-49065
10 Dec 2024 — Microsoft Office Remote Code Execution Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49065 • CWE-125: Out-of-bounds Read •
CVSS: 7.6EPSS: 5%CPEs: 3EXPL: 0CVE-2024-49033 – Microsoft Word Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2024-49033
12 Nov 2024 — Microsoft Word Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-49033 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2024-20673 – Microsoft Office Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-20673
13 Feb 2024 — Microsoft Office Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Office • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20673 • CWE-693: Protection Mechanism Failure •
CVSS: 7.8EPSS: 1%CPEs: 4EXPL: 0CVE-2024-21379 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2024-21379
13 Feb 2024 — Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de ejecución remota de código de Microsoft Word This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Office Word. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PDF files. The issue results from the lack of proper validation of user-supplied data, which can r... • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21379 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.8EPSS: 79%CPEs: 11EXPL: 0CVE-2023-36761 – Microsoft Word Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2023-36761
12 Sep 2023 — Microsoft Word Information Disclosure Vulnerability Vulnerabilidad de Divulgación de Información de Microsoft Word Microsoft Word contains an unspecified vulnerability that allows for information disclosure. • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36761 • CWE-20: Improper Input Validation •
CVSS: 7.3EPSS: 0%CPEs: 11EXPL: 0CVE-2023-36762 – Microsoft Word Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36762
12 Sep 2023 — Microsoft Word Remote Code Execution Vulnerability Vulnerabilidad de Ejecución Remota de Código de Microsoft Word • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-36762 • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2023-33150 – Microsoft Office Security Feature Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2023-33150
11 Jul 2023 — Microsoft Office Security Feature Bypass Vulnerability • https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-33150 • CWE-693: Protection Mechanism Failure •