Vulnerabilities > Microsoft > Office 365 Proplus > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-11 | CVE-2020-0697 | Improper Privilege Management vulnerability in Microsoft Office 365 Proplus An elevation of privilege vulnerability exists in Microsoft Office OLicenseHeartbeat task, where an attacker who successfully exploited this vulnerability could run this task as SYSTEM.To exploit the vulnerability, an authenticated attacker would need to place a specially crafted file in a specific location, thereby allowing arbitrary file corruption.The security update addresses the vulnerability by correcting how the process validates the log file., aka 'Microsoft Office Tampering Vulnerability'. | 7.2 |
| 2019-12-10 | CVE-2019-1461 | Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Word A denial of service vulnerability exists in Microsoft Word software when the software fails to properly handle objects in memory, aka 'Microsoft Word Denial of Service Vulnerability'. network microsoft | 7.1 |
| 2019-08-14 | CVE-2019-1205 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1201 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1200 | Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Outlook A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1199 | Out-of-bounds Write vulnerability in Microsoft Office and Office 365 Proplus A remote code execution vulnerability exists in Microsoft Outlook when the software fails to properly handle objects in memory. | 7.8 |
| 2019-08-14 | CVE-2019-1155 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. | 7.8 |
| 2019-06-12 | CVE-2019-1035 | Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. | 7.8 |