Filtered by vendor Microsoft Subscriptions
Filtered by product Office Subscriptions
Total 1056 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-24285 1 Microsoft 31 365 Copilot, Office, Office For Android and 28 more 2026-05-22 7 High
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
CVE-2023-36565 1 Microsoft 3 365 Copilot, Office, Office Long Term Servicing Channel 2026-05-22 7 High
Microsoft Office Graphics Elevation of Privilege Vulnerability
CVE-2025-47953 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-49702 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 7.8 High
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-30386 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-25180 1 Microsoft 33 365 Copilot, Office, Office For Android and 30 more 2026-05-22 5.5 Medium
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.
CVE-2025-26687 1 Microsoft 26 365 Copilot, Office, Windows 10 1507 and 23 more 2026-05-22 7.5 High
Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.
CVE-2025-62557 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-59234 1 Microsoft 11 365, 365 Apps, 365 Copilot and 8 more 2026-05-22 7.8 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-60724 1 Microsoft 32 365 Copilot, Graphics Component, Office and 29 more 2026-05-22 9.8 Critical
Heap-based buffer overflow in Microsoft Graphics Component allows an unauthorized attacker to execute code over a network.
CVE-2025-53766 1 Microsoft 30 365 Copilot, Gdi+, Gdiplus and 27 more 2026-05-22 9.8 Critical
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.
CVE-2025-53732 1 Microsoft 2 365 Copilot, Office 2026-05-22 7.8 High
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2023-33153 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2026-05-19 6.8 Medium
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2022-41104 1 Microsoft 4 365 Apps, Excel, Office and 1 more 2026-05-19 5.5 Medium
Microsoft Excel Security Feature Bypass Vulnerability
CVE-2021-42293 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2026-05-19 6.5 Medium
Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege Vulnerability
CVE-2022-44695 1 Microsoft 8 365 Apps, Office, Office 2019 and 5 more 2026-05-19 7.8 High
Microsoft Office Visio Remote Code Execution Vulnerability
CVE-2025-21361 1 Microsoft 5 Office, Office Long Term Servicing Channel, Office Macos 2021 and 2 more 2026-05-19 7.8 High
Microsoft Outlook Remote Code Execution Vulnerability
CVE-2025-21338 1 Microsoft 29 Office, Office Long Term Servicing Channel, Office Macos and 26 more 2026-05-19 7.8 High
GDI+ Remote Code Execution Vulnerability
CVE-2022-41107 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2026-05-19 7.8 High
Microsoft Office Graphics Remote Code Execution Vulnerability
CVE-2023-33158 1 Microsoft 3 365 Apps, Office, Office Long Term Servicing Channel 2026-05-19 7.8 High
Microsoft Excel Remote Code Execution Vulnerability