本ページは microsoft word に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2026-42832 | Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally. | [email protected] | 7.7 | 0.04% | 2026-05-12 | 2026-05-19 |
| CVE-2026-41101 | Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally. | [email protected] | 7.1 | 0.04% | 2026-05-12 | 2026-05-16 |
| CVE-2026-40421 | Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally. | [email protected] | 4.3 | 0.05% | 2026-05-12 | 2026-06-01 |
| CVE-2026-40367 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 8.4 | 0.06% | 2026-05-12 | 2026-06-01 |
| CVE-2026-40366 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 8.4 | 0.06% | 2026-05-12 | 2026-06-01 |
| CVE-2026-40364 | Access of resource using incompatible type ('type confusion') in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 8.4 | 0.19% | 2026-05-12 | 2026-05-19 |
| CVE-2026-40361 | Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. | [email protected] | 8.4 | 0.06% | 2026-05-12 | 2026-06-03 |
| CVE-2026-35440 | Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally. | [email protected] | 5.5 | 0.04% | 2026-05-12 | 2026-05-19 |
| CVE-2026-26133 | AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network. | [email protected] | 7.1 | 0.05% | 2026-03-16 | 2026-04-09 |
| CVE-2026-21511 | Deserialization of untrusted data in Microsoft Office Outlook allows an unauthorized attacker to perform spoofing over a network. | [email protected] | 7.5 | 0.35% | 2026-02-10 | 2026-02-11 |
| CVE-2026-20948 | Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.02% | 2026-01-13 | 2026-01-16 |
| CVE-2025-62562 | Use after free in Microsoft Office Outlook allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.06% | 2025-12-09 | 2025-12-09 |
| CVE-2025-62559 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.09% | 2025-12-09 | 2025-12-10 |
| CVE-2025-62558 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.07% | 2025-12-09 | 2025-12-10 |
| CVE-2025-62555 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.0 | 0.07% | 2025-12-09 | 2025-12-10 |
| CVE-2025-59222 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.07% | 2025-10-14 | 2025-10-16 |
| CVE-2025-59221 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.0 | 0.07% | 2025-10-14 | 2025-10-16 |
| CVE-2025-54905 | Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally. | [email protected] | 7.1 | 0.23% | 2025-09-09 | 2025-09-12 |
| CVE-2025-53738 | Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. | [email protected] | 7.8 | 0.36% | 2025-08-12 | 2025-08-18 |
| CVE-2025-53736 | Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally. | [email protected] | 6.8 | 0.36% | 2025-08-12 | 2025-08-18 |