2016

DATE	CVE	VULNERABILITY TITLE	RISK
2019-01-08	CVE-2019-0560	Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Outlook An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office. network microsoft	4.3
2019-01-08	CVE-2019-0559	Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Outlook An information disclosure vulnerability exists when Microsoft Outlook improperly handles certain types of messages, aka "Microsoft Outlook Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. network microsoft	4.3
2018-11-14	CVE-2018-8582	Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. network microsoft critical	9.3
2018-11-14	CVE-2018-8576	Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Outlook A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. network microsoft critical	9.3
2018-11-14	CVE-2018-8524	Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. network microsoft critical	9.3
2018-11-14	CVE-2018-8522	Unspecified vulnerability in Microsoft products A remote code execution vulnerability exists in Microsoft Outlook software when it fails to properly handle objects in memory, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. network microsoft critical	9.3
2018-06-14	CVE-2018-8244	Improper Input Validation vulnerability in Microsoft Office, Outlook and Outlook RT An elevation of privilege vulnerability exists when Microsoft Outlook does not validate attachment headers properly, aka "Microsoft Outlook Elevation of Privilege Vulnerability." This affects Microsoft Office, Microsoft Outlook. network microsoft CWE-20	4.3
2018-05-16	CVE-2017-17689	The S/MIME specification allows a Cipher Block Chaining (CBC) malleability-gadget attack that can indirectly lead to plaintext exfiltration, aka EFAIL. network 9folders apple bloop emclient flipdogsolutions freron gnome google horde ibm kde microsoft mozilla postbox-inc r2mail2 ritlabs	4.3
2018-02-15	CVE-2018-0852	Out-of-bounds Write vulnerability in Microsoft Office and Outlook Microsoft Outlook 2007 SP3, Microsoft Outlook 2010 SP2, Microsoft Outlook 2013 SP1 and RT SP1, Microsoft Outlook 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Outlook handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". network microsoft CWE-787 critical	9.3
2018-02-15	CVE-2018-0851	Out-of-bounds Write vulnerability in Microsoft Office, Office Word Viewer and Outlook Microsoft Office 2007 SP2, Microsoft Office Word Viewer, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow a remote code execution vulnerability, due to how Office handles objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". network microsoft CWE-787 critical	9.3