Microsoft Word for Android

CPE Details

Microsoft Word for Android
microsoft
word
-
2020-06-12
16h38 +00:00
2020-06-12
16h38 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:microsoft:word:-:*:*:*:*:android:*:*

Informations

Vendor

microsoft

Product

word

Version

-

Target Software

android

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-26903 2022-04-15 17h05 +00:00 Windows Graphics Component Remote Code Execution Vulnerability
7.8
High
CVE-2020-1223 2020-06-09 17h43 +00:00 A remote code execution vulnerability exists when Microsoft Word for Android fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file.The update addresses the vulnerability by correcting how Microsoft Word for Android handles specially crafted URL files., aka 'Word for Android Remote Code Execution Vulnerability'.
8.8
High
CVE-2012-0765 2012-02-15 00h00 +00:00 Multiple cross-site scripting (XSS) vulnerabilities in Adobe RoboHelp 8 and 9 for Word allow remote attackers to inject arbitrary web script or HTML via a crafted URL, related to certain .htm files in (1) template_stock and (2) template_csh directories.
4.3
CVE-2008-0109 2008-02-12 21h00 +00:00 Word in Microsoft Office 2000 SP3, XP SP3, Office 2003 SP2, and Office Word Viewer 2003 allows remote attackers to execute arbitrary code via crafted fields within the File Information Block (FIB) of a Word file, which triggers length calculation errors and memory corruption.
9.3
CVE-2001-0501 2002-03-09 04h00 +00:00 Microsoft Word 2002 and earlier allows attackers to automatically execute macros without warning the user by embedding the macros in a manner that escapes detection by the security scanner.
4.6
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.