Vulnerabilities > Microsoft > Word > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-12 | CVE-2023-36761 | Unspecified vulnerability in Microsoft products Microsoft Word Information Disclosure Vulnerability | 6.5 |
| 2022-05-10 | CVE-2022-29107 | Unspecified vulnerability in Microsoft products Microsoft Office Security Feature Bypass Vulnerability | 5.5 |
| 2020-08-17 | CVE-2020-1503 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory. | 5.5 |
| 2020-07-14 | CVE-2020-1445 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka 'Microsoft Office Information Disclosure Vulnerability'. | 5.5 |
| 2020-07-14 | CVE-2020-1342 | Use of Uninitialized Resource vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. | 5.5 |
| 2020-06-09 | CVE-2020-1229 | Unspecified vulnerability in Microsoft 365 Apps, Office and Word A security feature bypass vulnerability exists in Microsoft Outlook when Office fails to enforce security settings configured on a system, aka 'Microsoft Outlook Security Feature Bypass Vulnerability'. | 4.3 |
| 2019-12-10 | CVE-2019-1461 | Unspecified vulnerability in Microsoft Office, Office 365 Proplus and Word A denial of service vulnerability exists in Microsoft Word software when the software fails to properly handle objects in memory, aka 'Microsoft Word Denial of Service Vulnerability'. | 6.5 |
| 2019-01-08 | CVE-2019-0561 | Unspecified vulnerability in Microsoft products An information disclosure vulnerability exists when Microsoft Word macro buttons are used improperly, aka "Microsoft Word Information Disclosure Vulnerability." This affects Microsoft Word, Office 365 ProPlus, Microsoft Office, Word. | 5.5 |
| 2018-04-12 | CVE-2018-0950 | Unspecified vulnerability in Microsoft Office, Office Compatibility Pack and Word An information disclosure vulnerability exists when Office renders Rich Text Format (RTF) email messages containing OLE objects when a message is opened or previewed, aka "Microsoft Office Information Disclosure Vulnerability." This affects Microsoft Word, Microsoft Office. | 6.5 |
| 2017-03-17 | CVE-2017-0105 | Information Exposure vulnerability in Microsoft products Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2, and Office Web Apps 2010 SP2 allow remote attackers to obtain sensitive information from out-of-bound memory via a crafted Office document, aka "Microsoft Office Information Disclosure Vulnerability." | 5.5 |