Filtered by vendor Microsoft Subscriptions
Total 24964 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-49702 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 7.8 High
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-30386 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-53766 1 Microsoft 30 365 Copilot, Gdi+, Gdiplus and 27 more 2026-05-22 9.8 Critical
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network.
CVE-2023-36565 1 Microsoft 3 365 Copilot, Office, Office Long Term Servicing Channel 2026-05-22 7 High
Microsoft Office Graphics Elevation of Privilege Vulnerability
CVE-2023-23391 1 Microsoft 2 365 Copilot, Office 2026-05-22 5.5 Medium
Office for Android Spoofing Vulnerability
CVE-2026-24285 1 Microsoft 31 365 Copilot, Office, Office For Android and 28 more 2026-05-22 7 High
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.
CVE-2025-59227 1 Microsoft 13 365, 365 Apps, 365 Copilot and 10 more 2026-05-22 7.8 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-59234 1 Microsoft 11 365, 365 Apps, 365 Copilot and 8 more 2026-05-22 7.8 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-49696 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-53732 1 Microsoft 2 365 Copilot, Office 2026-05-22 7.8 High
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-30388 1 Microsoft 29 365 Copilot, Office, Office Long Term Servicing Channel and 26 more 2026-05-22 7.8 High
Heap-based buffer overflow in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.
CVE-2025-47167 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-47953 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-47162 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-47164 1 Microsoft 10 365 Apps, 365 Copilot, Office and 7 more 2026-05-22 8.4 High
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2025-53799 1 Microsoft 26 365 Copilot, Office, Windows 10 1507 and 23 more 2026-05-22 5.5 Medium
Use of uninitialized resource in Windows Imaging Component allows an unauthorized attacker to disclose information locally.
CVE-2022-22709 1 Microsoft 1 Vp9 Video Extensions 2026-05-22 7.8 High
VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2022-23282 1 Microsoft 1 Paint 3d 2026-05-22 7.8 High
Paint 3D Remote Code Execution Vulnerability
CVE-2022-24451 1 Microsoft 1 Vp9 Video Extensions 2026-05-22 7.8 High
VP9 Video Extensions Remote Code Execution Vulnerability
CVE-2022-24457 1 Microsoft 1 Heif Image Extension 2026-05-22 7.8 High
HEIF Image Extensions Remote Code Execution Vulnerability