Office Web Apps Server CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (72 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2015-0086	1 Microsoft	7 Office, Office Compatibility Pack, Office Web Apps Server and 4 more	2025-04-12	N/A
Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 Gold and SP1, Word 2013 RT Gold and SP1, Word Viewer, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 Gold and SP1, Web Applications 2010 SP2, and Web Apps Server 2013 Gold and SP1 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted RTF document, aka "Microsoft Office Memory Corruption Vulnerability."
CVE-2014-1754	1 Microsoft	4 Office Web Apps Server, Sharepoint Foundation, Sharepoint Server and 1 more	2025-04-12	N/A
Cross-site scripting (XSS) vulnerability in Microsoft SharePoint Server 2013 Gold and SP1, SharePoint Foundation 2013 Gold and SP1, Office Web Apps Server 2013 Gold and SP1, and SharePoint Server 2013 Client Components SDK allows remote attackers to inject arbitrary web script or HTML via a crafted request, aka "SharePoint XSS Vulnerability."
CVE-2014-0251	1 Microsoft	8 Office Web Apps Server, Project Server, Sharepoint Designer and 5 more	2025-04-12	N/A
Microsoft Windows SharePoint Services 3.0 SP3; SharePoint Server 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1; SharePoint Foundation 2010 SP1 and SP2 and 2013 Gold and SP1; Project Server 2010 SP1 and SP2 and 2013 Gold and SP1; Web Applications 2010 SP1 and SP2; Office Web Apps Server 2013 Gold and SP1; SharePoint Server 2013 Client Components SDK; and SharePoint Designer 2007 SP3, 2010 SP1 and SP2, and 2013 Gold and SP1 allow remote authenticated users to execute arbitrary code via crafted page content, aka "SharePoint Page Content Vulnerability."
CVE-2014-0260	1 Microsoft	6 Office Compatibility Pack, Office Web Apps, Office Web Apps Server and 3 more	2025-04-11	N/A
Microsoft Word 2003 SP3, 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office Compatibility Pack SP3; Word Viewer; SharePoint Server 2010 SP1 and SP2 and 2013; Office Web Apps 2010 SP1 and SP2; and Office Web Apps Server 2013 allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Office document, aka "Word Memory Corruption Vulnerability."
CVE-2022-41061	1 Microsoft	7 365 Apps, Office, Office Online Server and 4 more	2025-02-28	7.8 High
Microsoft Word Remote Code Execution Vulnerability
CVE-2023-23396	1 Microsoft	2 Office Online Server, Office Web Apps Server	2025-02-28	6.5 Medium
Microsoft Excel Denial of Service Vulnerability
CVE-2022-41063	1 Microsoft	6 365 Apps, Excel, Office and 3 more	2025-01-02	7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-41106	1 Microsoft	6 365 Apps, Excel, Office and 3 more	2025-01-02	8.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-41103	1 Microsoft	8 365 Apps, Office, Office Long Term Servicing Channel and 5 more	2025-01-02	5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2022-41060	1 Microsoft	8 365 Apps, Office, Office Long Term Servicing Channel and 5 more	2025-01-02	5.5 Medium
Microsoft Word Information Disclosure Vulnerability
CVE-2022-30173	1 Microsoft	2 Excel, Office Web Apps Server	2025-01-02	7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-30172	1 Microsoft	3 Office Online Server, Office Web Apps Server, Sharepoint Server	2025-01-02	5.5 Medium
Microsoft Office Information Disclosure Vulnerability
CVE-2022-30171	1 Microsoft	3 Office Online Server, Office Web Apps Server, Sharepoint Server	2025-01-02	5.5 Medium
Microsoft Office Information Disclosure Vulnerability
CVE-2022-30159	1 Microsoft	3 Office Online Server, Office Web Apps Server, Sharepoint Server	2025-01-02	5.5 Medium
Microsoft Office Information Disclosure Vulnerability
CVE-2022-29110	1 Microsoft	2 Excel, Office Web Apps Server	2025-01-02	7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-26901	1 Microsoft	7 365 Apps, Excel, Excel Rt and 4 more	2025-01-02	7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2022-22716	1 Microsoft	8 365 Apps, Excel, Office and 5 more	2025-01-02	5.5 Medium
Microsoft Excel Information Disclosure Vulnerability
CVE-2022-21840	1 Microsoft	10 365 Apps, Excel, Office and 7 more	2025-01-02	8.8 High
Microsoft Office Remote Code Execution Vulnerability
CVE-2023-23399	1 Microsoft	6 365 Apps, Excel, Office and 3 more	2025-01-01	7.8 High
Microsoft Excel Remote Code Execution Vulnerability
CVE-2021-43256	1 Microsoft	8 365 Apps, Excel, Excel Rt and 5 more	2024-11-21	7.8 High
Microsoft Excel Remote Code Execution Vulnerability

« first previous Page 2 of 4. next last »