Office For Android CVEs and Security Vulnerabilities

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2026-40363	1 Microsoft	9 365 Apps, Office, Office 2016 and 6 more	2026-05-13	8.4 High
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-42831	1 Microsoft	4 Office, Office For Android, Office Macos 2021 and 1 more	2026-05-13	7.8 High
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVE-2026-25180	1 Microsoft	32 Office, Office For Android, Windows 10 1607 and 29 more	2026-04-14	5.5 Medium
Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.
CVE-2026-24285	1 Microsoft	30 Office, Office For Android, Windows 10 1607 and 27 more	2026-04-14	7 High
Use after free in Windows Win32K allows an authorized attacker to elevate privileges locally.

Page 1 of 1.