Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2020-08-17	CVE-2020-1493	Unspecified vulnerability in Microsoft 365 Apps, Office and Outlook An information disclosure vulnerability exists when attaching files to Outlook messages. local low complexity microsoft	5.5
2020-08-17	CVE-2020-1483	Out-of-bounds Write vulnerability in Microsoft 365 Apps, Office and Outlook A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. local low complexity microsoft CWE-787	5.0
2020-07-14	CVE-2020-1447	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. network microsoft CWE-119	6.8
2020-07-14	CVE-2020-1446	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. network microsoft CWE-119	6.8
2020-07-14	CVE-2020-1445	Information Exposure vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka 'Microsoft Office Information Disclosure Vulnerability'. network microsoft CWE-200	4.3
2020-07-14	CVE-2020-1342	Use of Uninitialized Resource vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. network microsoft CWE-908	4.3
2020-06-09	CVE-2020-1322	Information Exposure vulnerability in Microsoft 365 Apps, Office and Project An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'. network microsoft CWE-200	4.3
2020-06-09	CVE-2020-1321	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Microsoft 365 Apps and Office A remote code execution vulnerability exists in Microsoft Office software when it fails to properly handle objects in memory, aka 'Microsoft Office Remote Code Execution Vulnerability'. network microsoft CWE-119	6.8
2020-06-09	CVE-2020-1229	Information Exposure vulnerability in Microsoft 365 Apps, Office and Word A security feature bypass vulnerability exists in Microsoft Outlook when Office fails to enforce security settings configured on a system, aka 'Microsoft Outlook Security Feature Bypass Vulnerability'. network microsoft CWE-200	4.3