microsoft

powerpoint

17 known vulnerabilities · sorted by CVSS score

CVE-2018-8376

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Microsoft PowerPoint.

microsoft / powerpoint

Network

Published Aug 15, 2018

CVE-2018-8501

HIGH8.8

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in Protected View, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Office 365 ProPlus, PowerPoint Viewer, Microsoft Office, Microsoft PowerPoint.

microsoft / office+10

Network

Published Oct 10, 2018

CVE-2020-0760

HIGH8.8

A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.

microsoft / access+32

Network

Published Apr 15, 2020

CVE-2018-8628

HIGH7.8

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft PowerPoint, Microsoft SharePoint, Microsoft PowerPoint Viewer, Office Online Server, Microsoft SharePoint Server.

microsoft / office+14

Local

Published Dec 12, 2018

CVE-2025-53761

HIGH7.8

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+8

Local

Published Aug 12, 2025

CVE-2024-20673

HIGH7.8

Microsoft Office Remote Code Execution Vulnerability

microsoft / excel+8

Local

Published Feb 13, 2024

CVE-2025-54908

HIGH7.8

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+8

Local

Published Sep 9, 2025

CVE-2019-1462

HIGH7.8

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerability'.

microsoft / office+6

Local

Published Dec 10, 2019

CVE-2024-38171

HIGH7.8

Microsoft PowerPoint Remote Code Execution Vulnerability

microsoft / 365_apps+4

Local

Published Aug 13, 2024

CVE-2021-27056

HIGH7.8

Microsoft PowerPoint Remote Code Execution Vulnerability

microsoft / 365_apps+5

Local

Published Mar 11, 2021

CVE-2025-49705

HIGH7.8

Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+10

Local

Published Jul 8, 2025

CVE-2022-26903

HIGH7.8

Windows Graphics Component Remote Code Execution Vulnerability

microsoft / excel+25

Local

Published Apr 15, 2022

CVE-2020-17124

HIGH7.8

Microsoft PowerPoint Remote Code Execution Vulnerability

microsoft / 365_apps+5

Local

Published Dec 10, 2020

CVE-2025-47175

HIGH7.8

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+6

Local

Published Jun 10, 2025

CVE-2025-59238

HIGH7.8

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+8

Local

Published Oct 14, 2025

CVE-2024-39804

HIGH7.1

A library injection vulnerability exists in Microsoft PowerPoint 16.83 for macOS. A specially crafted library can leverage PowerPoint's access privileges, leading to a permission bypass. A malicious application could inject a library and start the program to trigger this vulnerability and then make use of the vulnerable application's permissions.

microsoft / powerpoint

Local

Published Dec 18, 2024

CVE-2025-49699

HIGH7.0

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

microsoft / 365_apps+14

Local

Published Jul 8, 2025