cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2016-3235,https://securityvulnerability.io/vulnerability/CVE-2016-3235,,"Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a crafted application, aka ""Microsoft Office OLE DLL Side Loading Vulnerability.""",Microsoft,"Visio,Visio Viewer",7.8,HIGH,0.025539999827742577,true,false,false,true,,false,false,2016-06-16T01:00:00.000Z,0
CVE-2013-0079,https://securityvulnerability.io/vulnerability/CVE-2013-0079,,"Microsoft Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file that triggers incorrect memory allocation, aka ""Visio Viewer Tree Object Type Confusion Vulnerability.""",Microsoft,"Visio Viewer,Office Filter Pack,Visio",,,0.8975800275802612,false,false,false,false,,false,false,2013-03-13T00:00:00.000Z,0
CVE-2012-1888,https://securityvulnerability.io/vulnerability/CVE-2012-1888,,"Buffer overflow in Microsoft Visio 2010 SP1 and Visio Viewer 2010 SP1 allows remote attackers to execute arbitrary code via a crafted Visio file, aka ""Visio DXF File Format Buffer Overflow Vulnerability.""",Microsoft,"Visio Viewer,Visio",,,0.9425299763679504,false,false,false,false,,false,false,2012-08-15T01:00:00.000Z,0
CVE-2012-0018,https://securityvulnerability.io/vulnerability/CVE-2012-0018,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly validate attributes in Visio files, which allows remote attackers to execute arbitrary code via a crafted file, aka ""VSD File Format Memory Corruption Vulnerability.""",Microsoft,Visio Viewer,,,0.9520000219345093,false,false,false,false,,false,false,2012-05-09T00:00:00.000Z,0
CVE-2012-0136,https://securityvulnerability.io/vulnerability/CVE-2012-0136,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka ""VSD File Format Memory Corruption Vulnerability,"" a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0137, and CVE-2012-0138.",Microsoft,Visio Viewer,,,0.51774001121521,false,false,false,false,,false,false,2012-02-14T22:00:00.000Z,0
CVE-2012-0019,https://securityvulnerability.io/vulnerability/CVE-2012-0019,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka ""VSD File Format Memory Corruption Vulnerability,"" a different vulnerability than CVE-2012-0020, CVE-2012-0136, CVE-2012-0137, and CVE-2012-0138.",Microsoft,Visio Viewer,,,0.51774001121521,false,false,false,false,,false,false,2012-02-14T22:00:00.000Z,0
CVE-2012-0020,https://securityvulnerability.io/vulnerability/CVE-2012-0020,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka ""VSD File Format Memory Corruption Vulnerability,"" a different vulnerability than CVE-2012-0019, CVE-2012-0136, CVE-2012-0137, and CVE-2012-0138.",Microsoft,Visio Viewer,,,0.51774001121521,false,false,false,false,,false,false,2012-02-14T22:00:00.000Z,0
CVE-2012-0137,https://securityvulnerability.io/vulnerability/CVE-2012-0137,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka ""VSD File Format Memory Corruption Vulnerability,"" a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0136, and CVE-2012-0138.",Microsoft,Visio Viewer,,,0.51774001121521,false,false,false,false,,false,false,2012-02-14T22:00:00.000Z,0
CVE-2012-0138,https://securityvulnerability.io/vulnerability/CVE-2012-0138,,"Microsoft Visio Viewer 2010 Gold and SP1 does not properly handle memory during the parsing of files, which allows remote attackers to execute arbitrary code via crafted attributes in a Visio file, aka ""VSD File Format Memory Corruption Vulnerability,"" a different vulnerability than CVE-2012-0019, CVE-2012-0020, CVE-2012-0136, and CVE-2012-0137.",Microsoft,Visio Viewer,,,0.51774001121521,false,false,false,false,,false,false,2012-02-14T22:00:00.000Z,0
CVE-2008-3014,https://securityvulnerability.io/vulnerability/CVE-2008-3014,,"Buffer overflow in gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a malformed WMF image file that triggers improper memory allocation, aka ""GDI+ WMF Buffer Overrun Vulnerability.""",Microsoft,"Forefront Client Security,Server,Digital Image Suite,Internet Explorer,Office,Sql Server Reporting Services,Windows Vista,Visio,Windows-nt,Windows Xp,Sql Server,Report Viewer,Works,Office Powerpoint Viewer",,,0.8248999714851379,false,false,false,false,,false,false,2008-09-11T01:11:00.000Z,0
CVE-2008-3012,https://securityvulnerability.io/vulnerability/CVE-2008-3012,,"gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 does not properly perform memory allocation, which allows remote attackers to execute arbitrary code via a malformed EMF image file, aka ""GDI+ EMF Memory Corruption Vulnerability.""",Microsoft,"Forefront Client Security,Office System,Server,Digital Image Suite,Internet Explorer,Office,Sql Server Reporting Services,Windows,Windows Vista,Visio,Windows-nt,Windows Xp,Sql Server,Report Viewer,Works,Office Powerpoint Viewer",,,0.6925600171089172,false,false,false,false,,false,false,2008-09-11T01:11:00.000Z,0
CVE-2008-3013,https://securityvulnerability.io/vulnerability/CVE-2008-3013,,"gdiplus.dll in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a malformed GIF image file containing many extension markers for graphic control extensions and subsequent unknown labels, aka ""GDI+ GIF Parsing Vulnerability.""",Microsoft,"Powerpoint Viewer,Forefront Client Security,Digital Image Suite,Windows Xp,Internet Explorer,Windows Server 2008,Office,Windows Vista,Sql Server Reporting Services,Visio,Sql Server,Report Viewer,Works",,,0.9511299729347229,false,false,false,false,,false,false,2008-09-11T01:11:00.000Z,0
CVE-2008-3015,https://securityvulnerability.io/vulnerability/CVE-2008-3015,,"Integer overflow in gdiplus.dll in GDI+ in Microsoft Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via a BMP image file with a malformed BitMapInfoHeader that triggers a buffer overflow, aka ""GDI+ BMP Integer Overflow Vulnerability.""",Microsoft,"Forefront Client Security,Digital Image Suite,Office,Sql Server Reporting Services,Visio,Sql Server,Report Viewer,Works,Office Powerpoint Viewer",,,0.7206299901008606,false,false,false,false,,false,false,2008-09-11T01:11:00.000Z,0
CVE-2007-5348,https://securityvulnerability.io/vulnerability/CVE-2007-5348,,"Integer overflow in GDI+ in Microsoft Internet Explorer 6 SP1, Windows XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, Office XP SP3, Office 2003 SP2 and SP3, 2007 Microsoft Office System Gold and SP1, Visio 2002 SP2, PowerPoint Viewer 2003, Works 8, Digital Image Suite 2006, SQL Server 2000 Reporting Services SP2, SQL Server 2005 SP2, Report Viewer 2005 SP1 and 2008, and Forefront Client Security 1.0 allows remote attackers to execute arbitrary code via an image file with crafted gradient sizes in gradient fill input, which triggers a heap-based buffer overflow related to GdiPlus.dll and VGX.DLL, aka ""GDI+ VML Buffer Overrun Vulnerability.""",Microsoft,"Forefront Client Security,Office System,Server,Digital Image Suite,Internet Explorer,Office,Sql Server Reporting Services,Windows,Windows Vista,Visio,Windows-nt,Windows Xp,Sql Server,Report Viewer,Works,Office Powerpoint Viewer",,,0.6690899729728699,false,false,false,false,,false,false,2008-09-11T01:01:00.000Z,0
CVE-2007-0671,https://securityvulnerability.io/vulnerability/CVE-2007-0671,,"Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to execute arbitrary code via unknown attack vectors, as demonstrated by Exploit-MSExcel.h in targeted zero-day attacks.",Microsoft,"Frontpage,Project,Access,Outlook,Powerpoint,Office,Excel,Publisher,Word,Infopath,Excel Viewer,Visio,Onenote,Word Viewer",,,0.9559100270271301,false,false,false,false,,false,false,2007-02-03T01:00:00.000Z,0
CVE-2006-3877,https://securityvulnerability.io/vulnerability/CVE-2006-3877,,"Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted attackers to execute arbitrary code via an unspecified ""crafted file,"" a different vulnerability than CVE-2006-3435, CVE-2006-4694, and CVE-2006-3876.",Microsoft,"Frontpage,Project,Access,Outlook,Powerpoint,Office,Excel,Publisher,Word,Infopath,Excel Viewer,Visio,Onenote,Word Viewer",,,0.1588899940252304,false,false,false,false,,false,false,2006-10-10T22:00:00.000Z,0