cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2025-21338,https://securityvulnerability.io/vulnerability/CVE-2025-21338,GDI+ Remote Code Execution Vulnerability in Microsoft Products,"A remote code execution vulnerability exists in GDI+ that could allow an attacker to execute arbitrary code on a vulnerable system. This may occur when a user opens a specially crafted image file. Successful exploitation of the vulnerability could allow attackers to install programs; view, change, or delete data; or create new accounts with full user rights. To mitigate the risk, users are advised to ensure their software is up-to-date and to implement appropriate security measures.",Microsoft,"Windows 10 Version 1809,Windows Server 2019,Windows Server 2019 (server Core Installation),Windows Server 2022,Windows 10 Version 21h2,Windows 11 Version 22h2,Windows 10 Version 22h2,Windows Server 2025 (server Core Installation),Windows 11 Version 22h3,Windows 11 Version 23h2,Windows Server 2022, 23h2 Edition (server Core Installation),Windows 11 Version 24h2,Windows Server 2025,Windows 10 Version 1507,Windows 10 Version 1607,Windows Server 2016,Windows Server 2016 (server Core Installation),Windows Server 2008 Service Pack 2,Windows Server 2008 Service Pack 2 (server Core Installation),Windows Server 2008  Service Pack 2,Windows Server 2008 R2 Service Pack 1,Windows Server 2008 R2 Service Pack 1 (server Core Installation),Windows Server 2012,Windows Server 2012 (server Core Installation),Windows Server 2012 R2,Windows Server 2012 R2 (server Core Installation),Microsoft Office For Mac,Microsoft Office Ltsc For Mac 2021,Microsoft Office For iOS,Microsoft Office For Android,Microsoft Office For Universal,Microsoft Office Ltsc For Mac 2024",7.8,HIGH,0.0004299999854993075,false,false,false,false,false,false,false,2025-01-14T18:04:40.697Z,0
CVE-2025-21186,https://securityvulnerability.io/vulnerability/CVE-2025-21186,Remote Code Execution Vulnerability in Microsoft Access,"This vulnerability in Microsoft Access allows attackers to execute arbitrary code on the affected system. By exploiting this flaw, an attacker could manipulate how the application processes specific inputs, triggering remote code execution. Organizations using vulnerable versions of Microsoft Access should be vigilant and apply the necessary patches to mitigate potential risks. For further details, visit the Microsoft vendor advisory.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Access 2016 (32-bit Edition),Microsoft Access 2016",7.8,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:20.776Z,0
CVE-2025-21395,https://securityvulnerability.io/vulnerability/CVE-2025-21395,Remote Code Execution Vulnerability in Microsoft Access,"A remote code execution vulnerability exists in Microsoft Access when the software fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. This could enable the attacker to install programs; view, change, or delete data; or create new accounts with full user rights. Users are encouraged to apply the necessary updates to mitigate risk of unauthorized access.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Access 2016 (32-bit Edition),Microsoft Access 2016",7.8,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:12.837Z,55
CVE-2025-21366,https://securityvulnerability.io/vulnerability/CVE-2025-21366,Remote Code Execution Vulnerability in Microsoft Access,A security flaw has been identified in Microsoft Access that allows attackers to execute arbitrary code remotely. This vulnerability can potentially enable an unauthorized user to gain control over affected systems. It highlights the importance of patch management and regular software updates to protect against such attacks. Users are advised to review the latest updates from Microsoft and ensure their systems are secured.,Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Access 2016 (32-bit Edition),Microsoft Access 2016",7.8,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:09.694Z,0
CVE-2025-21362,https://securityvulnerability.io/vulnerability/CVE-2025-21362,Remote Code Execution Vulnerability in Microsoft Excel,"This vulnerability in Microsoft Excel allows remote attackers to execute arbitrary code on the victim's machine. By tricking a user into opening a specially crafted Excel file, attackers can exploit this flaw to take control of the system, potentially leading to data theft or further malware installation. Users are urged to apply the latest updates provided by Microsoft to mitigate this risk.",Microsoft,"Office Online Server,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office Ltsc For Mac 2024,Microsoft Excel 2016",8.4,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:07.536Z,0
CVE-2025-21357,https://securityvulnerability.io/vulnerability/CVE-2025-21357,Remote Code Execution Vulnerability in Microsoft Outlook,"A remote code execution vulnerability exists in Microsoft Outlook, allowing attackers to execute arbitrary code on affected systems by sending specially crafted emails. Users who open malicious emails or preview them in the Outlook client risk compromising their systems. This vulnerability underscores the importance of keeping Microsoft Outlook updated to the latest version. For detailed information and remediation steps, visit the official Microsoft advisory.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Outlook 2016",6.7,MEDIUM,0.0004299999854993075,false,false,false,false,false,false,false,2025-01-14T18:04:07.035Z,0
CVE-2025-21356,https://securityvulnerability.io/vulnerability/CVE-2025-21356,Remote Code Execution Vulnerability in Microsoft Office Visio,"A vulnerability in Microsoft Office Visio allows for remote code execution, potentially enabling an attacker to execute arbitrary code on a target system. This may occur if a user opens a specially crafted Visio file. Successful exploitation could lead to unauthorized access and control over the affected device. It is essential for users to apply available updates and adhere to security best practices to mitigate risks associated with this vulnerability.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024",7.8,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:06.489Z,0
CVE-2025-21354,https://securityvulnerability.io/vulnerability/CVE-2025-21354,Remote Code Execution Vulnerability in Microsoft Excel,"A remote code execution vulnerability exists in Microsoft Excel that could allow an attacker to execute arbitrary code on the affected system if a user opens a specially crafted Office file. This vulnerability can pose significant risks, allowing unauthorized access to sensitive data and control over the user's machine.",Microsoft,"Office Online Server,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office Ltsc For Mac 2024",8.4,HIGH,0.0005300000193528831,false,true,false,true,false,false,false,2025-01-14T18:04:05.861Z,0
CVE-2025-21346,https://securityvulnerability.io/vulnerability/CVE-2025-21346,Microsoft Office Security Feature Bypass Vulnerability - Microsoft,"This vulnerability allows attackers to bypass important security features in Microsoft Office applications, potentially enabling malicious actions to be performed without proper authorization. Exploiting this weakness could expose users to a range of security risks, including unauthorized access to sensitive data. It is crucial for users and organizations to stay informed about this vulnerability and implement necessary patches and updates to safeguard their systems.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office 2016",7.1,HIGH,0.00044999999227002263,false,false,false,false,false,false,false,2025-01-14T18:04:04.710Z,0
CVE-2025-21345,https://securityvulnerability.io/vulnerability/CVE-2025-21345,Remote Code Execution Vulnerability in Microsoft Office Visio,"The vulnerability in Microsoft Office Visio allows an attacker to execute arbitrary code on the victim's machine through specially crafted files. If successfully exploited, this could enable unauthorized access to sensitive data or control over the affected systems. Users are advised to apply the latest security patches to mitigate the risk of exploitation.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024",7.8,HIGH,0.0005300000193528831,false,false,false,false,false,false,false,2025-01-14T18:04:04.206Z,0
CVE-2024-49069,https://securityvulnerability.io/vulnerability/CVE-2024-49069,Microsoft Excel Remote Code Execution Vulnerability,"A critical vulnerability exists in Microsoft Excel that could allow an attacker to execute arbitrary code on a user's system. By crafting a malicious spreadsheet and convincing a user to open it, an attacker could exploit this vulnerability to gain unauthorized access to the victim's data. Successful exploitation may lead to the manipulation of data or execution of harmful software within the user's environment. Proper security measures and awareness are essential to mitigate potential threats posed by this vulnerability.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office Ltsc For Mac 2024,Microsoft Excel 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-12-12T02:04:00.000Z,0
CVE-2024-49142,https://securityvulnerability.io/vulnerability/CVE-2024-49142,Microsoft Access Remote Code Execution Vulnerability,"The vulnerability in Microsoft Access allows for remote code execution, enabling an attacker to execute arbitrary code on the user's system. This security flaw can be exploited when a user opens a specially crafted Access file. Successful exploitation can result in unauthorized access to sensitive data and control over the affected system. It is crucial for users to apply patches and security updates as provided by Microsoft to mitigate risks associated with this vulnerability. Ensuring that appropriate security protocols are in place and regularly updated can help safeguard against such attacks.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Access 2016 (32-bit Edition),Microsoft Access 2016 (64-bit Edition)",7.8,HIGH,0.0005300000193528831,false,false,false,false,,false,false,2024-12-12T02:04:00.000Z,0
CVE-2024-49065,https://securityvulnerability.io/vulnerability/CVE-2024-49065,Microsoft Office Remote Code Execution Vulnerability,Microsoft Office Remote Code Execution Vulnerability,Microsoft,"Microsoft Sharepoint Enterprise Server 2016,Microsoft Sharepoint Server 2019,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office Ltsc For Mac 2024,Microsoft Word 2016",5.5,MEDIUM,0.0005499999970197678,false,false,false,false,,false,false,2024-12-12T02:04:00.000Z,0
CVE-2024-49059,https://securityvulnerability.io/vulnerability/CVE-2024-49059,Microsoft Office Elevation of Privilege Vulnerability,"A vulnerability in Microsoft Office enables an attacker to elevate privileges through a crafted file or malicious input. When successfully exploited, this flaw allows attackers to execute arbitrary code in the context of the current user. This can lead to unauthorized access to sensitive data, modification or deletion of information, and further compromise of the affected system. Users are encouraged to apply the latest security updates to mitigate risks associated with this vulnerability.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office 2016",7,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-12-12T02:04:00.000Z,0
CVE-2024-49026,https://securityvulnerability.io/vulnerability/CVE-2024-49026,Microsoft Excel Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Microsoft Excel that may allow an attacker to execute arbitrary code on the affected system. This vulnerability arises due to improper handling of objects in memory, which can be exploited through specially crafted files. Successful exploitation can lead to complete control of the affected system, enabling attackers to install programs, view, change, or delete data, or create new accounts with full user rights. It is critical for users and organizations utilizing Microsoft Excel to apply the necessary security updates to mitigate risks related to this vulnerability.",Microsoft,"Microsoft Office 2019,Microsoft Office Online Server,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Excel 2016 Click-to-run (c2r)",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49033,https://securityvulnerability.io/vulnerability/CVE-2024-49033,Microsoft Word Security Feature Bypass Vulnerability,"A security feature bypass vulnerability exists in Microsoft Word, which allows an attacker to evade security measures in place. This vulnerability may enable attackers to execute unauthorized commands or interfere with the expected security operations of the software, potentially compromising user data and system integrity. Users are encouraged to apply the latest updates from Microsoft to mitigate any risks associated with this vulnerability.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Word 2016",7.5,HIGH,0.0007800000021234155,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49028,https://securityvulnerability.io/vulnerability/CVE-2024-49028,Microsoft Excel Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Microsoft Excel that could enable an attacker to execute arbitrary code on a victim's machine when they open a specially crafted Excel file. This vulnerability poses significant risks, particularly in environments where Excel documents are frequently exchanged. Effective security measures and timely updates are essential to mitigate the threats associated with this vulnerability, ensuring that sensitive data and systems remain secure. For more details, refer to the vendor advisory.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Excel 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49032,https://securityvulnerability.io/vulnerability/CVE-2024-49032,Microsoft Office Graphics Remote Code Execution Vulnerability,"The vulnerability in Microsoft Office Graphics poses a significant threat where attackers could exploit the graphics rendering process to execute arbitrary code on a victim's machine. By crafting malicious graphics files and enticing users to open them, an attacker gains the ability to compromise the integrity of the impacted system. This situation underscores the necessity for organizations and individuals to apply security patches and stay informed about updates from Microsoft to mitigate the risk associated with this vulnerability. Comprehensive security practices and regular audits are essential to safeguard systems against such remote code execution threats.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office 2016",7.8,HIGH,0.0005099999834783375,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49027,https://securityvulnerability.io/vulnerability/CVE-2024-49027,Microsoft Excel Remote Code Execution Vulnerability,Microsoft Excel is subjected to a remote code execution vulnerability that could allow an attacker to run arbitrary code on a user’s machine by exploiting specially crafted Excel files. Successful exploitation may lead to unauthorized access to sensitive data and potential system compromise. Users are urged to apply the latest security updates to mitigate associated risks.,Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office Ltsc For Mac 2024,Microsoft Excel 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49029,https://securityvulnerability.io/vulnerability/CVE-2024-49029,Microsoft Excel Remote Code Execution Vulnerability,"A vulnerability exists in Microsoft Excel that enables remote code execution. This flaw allows an attacker to execute arbitrary commands on a user's machine when a manipulated Excel file is opened. Successful exploitation of this vulnerability could lead to unauthorized actions performed on behalf of the user, potentially compromising sensitive information. Users are advised to apply security updates from Microsoft to mitigate this risk and ensure the integrity of their systems.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Excel 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49030,https://securityvulnerability.io/vulnerability/CVE-2024-49030,Microsoft Excel Remote Code Execution Vulnerability,"A remote code execution vulnerability exists in Microsoft Excel that could allow an attacker to execute arbitrary code on a user's system. The exploit can be triggered by a specially crafted file that, when opened, can initiate malicious actions without the user's consent. Users are strongly urged to apply the latest security updates to mitigate potential risk. For further information and guidance, refer to the vendor's advisory.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Excel 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-49031,https://securityvulnerability.io/vulnerability/CVE-2024-49031,Microsoft Office Graphics Remote Code Execution Vulnerability,"A vulnerability exists in the Microsoft Office product line that allows for remote code execution through maliciously crafted graphics files. An attacker can exploit this vulnerability when a user opens a specially crafted document. Successful exploitation could allow an attacker to execute arbitrary code in the context of the user, potentially leading to data theft or system compromise. It is essential for users and organizations to apply the latest security updates from Microsoft to mitigate this risk and protect sensitive information.",Microsoft,"Microsoft Office Ltsc For Mac 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc For Mac 2021,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024,Microsoft Office 2016",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-11-12T18:15:00.000Z,0
CVE-2024-43616,https://securityvulnerability.io/vulnerability/CVE-2024-43616,Microsoft Office Remote Code Execution Vulnerability,"Microsoft Office contains a remote code execution vulnerability that arises when the software improperly handles objects in memory. An attacker can exploit this vulnerability by convincing a user to open a specially crafted file, which could allow the attacker to execute arbitrary code on the affected system. Successful exploitation might result in unauthorized access to system resources, data corruption, or other malicious actions. Users are advised to ensure their applications are updated to mitigate the risk associated with this vulnerability.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-10-08T17:35:36.847Z,0
CVE-2024-43609,https://securityvulnerability.io/vulnerability/CVE-2024-43609,Microsoft Office Spoofing Vulnerability,Microsoft Office Spoofing Vulnerability,Microsoft,"Microsoft Office Ltsc 2024,Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office 2016",6.5,MEDIUM,0.0012799999676644802,false,false,false,false,,false,false,2024-10-08T17:35:34.804Z,0
CVE-2024-43505,https://securityvulnerability.io/vulnerability/CVE-2024-43505,Microsoft Office Visio Remote Code Execution Vulnerability,"The vulnerability in Microsoft Office Visio allows an attacker to execute arbitrary code on a victim's system by manipulating Visio files. This can lead to unauthorized access and control over the user’s machine, compromising sensitive information and the overall security of the affected system. It is crucial for users to apply patches and updates to mitigate the associated risks and protect their environments. The vulnerability affects various versions of Office Visio, making it essential for organizations to review their software inventory and ensure that they are taking adequate measures against potential exploits.",Microsoft,"Microsoft Office 2019,Microsoft 365 Apps For Enterprise,Microsoft Office Ltsc 2021,Microsoft Office Ltsc 2024",7.8,HIGH,0.0005000000237487257,false,false,false,false,,false,false,2024-10-08T17:35:18.966Z,0