Vulnerabilities > High

DATE CVE VULNERABILITY TITLE RISK
2025-04-08 CVE-2025-27748 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-04-08 CVE-2025-27749 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-04-08 CVE-2025-27750 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-04-08 CVE-2025-27751 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-416
7.8
7.8
2025-04-08 CVE-2025-27752 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-122
7.8
7.8
2025-04-08 CVE-2025-29791 Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
local
low complexity
CWE-843
7.8
7.8
2025-04-08 CVE-2025-29792 Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-416
7.3
7.3
2025-04-08 CVE-2025-29793 Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
network
low complexity
CWE-502
7.2
7.2
2025-04-08 CVE-2025-29794 Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
network
low complexity
CWE-285
8.8
8.8
2025-04-08 CVE-2025-29800 Improper privilege management in Microsoft AutoUpdate (MAU) allows an authorized attacker to elevate privileges locally.
local
low complexity
CWE-269
7.8
7.8