Visio

This hub aggregates every CVE we track for Visio, a product in the consumer software space. Use it to gauge the current risk picture and drill into individual advisories.

Consumer Softwareon-premdesktop app

CVEs tracked

Critical

High

In CISA KEV

Severity distribution

CRITICAL32HIGH19MEDIUM3

Monthly trend

2024-072026-06

Latest CVEs

See all →

The 15 most recently published vulnerabilities affecting Visio.

CVE-2024-38016Microsoft Office Visio Remote Code Execution Vulnerability7.8Sep 19, 2024
CVE-2024-43463Microsoft Office Visio Remote Code Execution Vulnerability7.8Sep 10, 2024
CVE-2024-20673Microsoft Office Remote Code Execution Vulnerability7.8Feb 13, 2024
CVE-2023-21741Microsoft Office Visio Information Disclosure Vulnerability7.1Jan 10, 2023
CVE-2023-21736Microsoft Office Visio Remote Code Execution Vulnerability7.8Jan 10, 2023
CVE-2023-21737Microsoft Office Visio Remote Code Execution Vulnerability7.8Jan 10, 2023
CVE-2022-44695Microsoft Office Visio Remote Code Execution Vulnerability7.8Dec 13, 2022
CVE-2022-38010Microsoft Office Visio Remote Code Execution Vulnerability7.8Sep 13, 2022
CVE-2021-27055Microsoft Visio Security Feature Bypass Vulnerability7.0Mar 11, 2021
CVE-2020-0760A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from ...8.8Apr 15, 2020
CVE-2016-3364Microsoft Visio 2016 allows remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."7.8Sep 14, 2016
CVE-2016-3235Microsoft Visio 2007 SP3, Visio 2010 SP2, Visio 2013 SP1, Visio 2016, Visio Viewer 2007 SP3, and Visio Viewer 2010 mishandle library loading, which allows local users to gain privileges via a craft...KEV7.8Jun 16, 2016
CVE-2016-0012Microsoft Office 2007 SP3, Excel 2007 SP3, PowerPoint 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2010 SP2, Excel 2010 SP2, PowerPoint 2010 SP2, Visio 2010 SP2, Word 2010 SP2, Office 2013 SP1, ...4.3Jan 13, 2016
CVE-2015-2503Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publisher 2007 SP3, Visio 2007 SP3, Word 2007 SP3, Office 2007 IME (Japanese) ...9.3Nov 11, 2015
CVE-2015-2557Buffer overflow in Microsoft Visio 2007 SP3 and 2010 SP2 allows remote attackers to execute arbitrary code via crafted UML data in an Office document, aka "Microsoft Office Memory Corruption Vulner...9.3Oct 14, 2015

Product normalization is registry-driven with AI assist and human review. How it works