Every CVE whose affected-product data names Microsoft Office 365, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2019-1109 — CVSS 9.1 (critical): A spoofing vulnerability exists when Microsoft Office Javascript does not check the validity of the web page making a request to Office…
CVE-2018-8597 — CVSS 7.8 (high): A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka…
CVE-2019-0945 — CVSS 7.8 (high): A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka…
CVE-2019-1402 — CVSS 5.5 (medium): An information disclosure vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory…
CVE-2019-1446 — CVSS 5.5 (medium): An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel…