Microsoft Office For Universal vulnerabilities

10 known vulnerabilities affecting microsoft/microsoft_office_for_universal.

Total CVEs
10
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
CRITICAL1HIGH9

Vulnerabilities

Page 1 of 1
CVE-2025-53766CRITICALCVSS 9.8≥ 16.0.1, < 16.0.14326.226182025-08-12
CVE-2025-53766 [CRITICAL] CWE-122 CVE-2025-53766: Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a ne Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.
cvelistv5nvd
CVE-2025-53732HIGHCVSS 7.8≥ 16.0.1, < 16.0.14326.226182025-08-12
CVE-2025-53732 [HIGH] CWE-122 CVE-2025-53732: Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code local Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
cvelistv5nvd
CVE-2025-30388HIGHCVSS 7.8≥ 16.0.1, < 16.0.14326.225022025-05-13
CVE-2025-30388 [HIGH] CWE-122 CVE-2025-30388: Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
cvelistv5nvd
CVE-2025-26687HIGHCVSS 7.5≥ 16.0.1, < 16.0.14326.223312025-04-08
CVE-2025-26687 [HIGH] CWE-416 CVE-2025-26687: Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a Use after free in Windows Win32K - GRFX allows an unauthorized attacker to elevate privileges over a network.
cvelistv5nvd
CVE-2025-21338HIGHCVSS 7.8≥ 16.0.1, < 16.0.14326.221752025-01-14
CVE-2025-21338 [HIGH] CWE-190 GDI+ Remote Code Execution Vulnerability GDI+ Remote Code Execution Vulnerability GDI+ Remote Code Execution Vulnerability
cvelistv5
CVE-2024-38250HIGHCVSS 7.8≥ 16.0.1, < 16.0.14326.21xxxx2024-09-10
CVE-2024-38250 [HIGH] CWE-126 CVE-2024-38250: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability
cvelistv5nvd
CVE-2023-36565HIGHCVSS 7.0≥ 16.0.1, < 16.0.14326.216062023-10-10
CVE-2023-36565 [HIGH] CWE-416 CVE-2023-36565: Microsoft Office Graphics Elevation of Privilege Vulnerability Microsoft Office Graphics Elevation of Privilege Vulnerability
cvelistv5nvd
CVE-2023-33158HIGHCVSS 7.8≥ 16.0.1, < 16.0.14326.215022023-07-11
CVE-2023-33158 [HIGH] CWE-191 CVE-2023-33158: Microsoft Excel Remote Code Execution Vulnerability Microsoft Excel Remote Code Execution Vulnerability
cvelistv5nvd
CVE-2023-24910HIGHCVSS 7.8≥ 16.0.1, < 16.0.14606.200002023-03-14
CVE-2023-24910 [HIGH] CWE-476 CVE-2023-24910: Windows Graphics Component Elevation of Privilege Vulnerability Windows Graphics Component Elevation of Privilege Vulnerability
cvelistv5nvd
CVE-2023-21823HIGHCVSS 7.8KEV≥ 16.0.1, < 16.0.14326.213302023-02-14
CVE-2023-21823 [HIGH] CWE-190 CVE-2023-21823: Windows Graphics Component Remote Code Execution Vulnerability Windows Graphics Component Remote Code Execution Vulnerability
cvelistv5nvd