Known Vulnerabilities for Onenote by Microsoft
Listed below are 10 of the newest known vulnerabilities associated with "Onenote" by "Microsoft".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-26133 json | Not Provided | 2026-03-16 | 2026-04-09 | |
| CVE-2023-36769 json | Microsoft OneNote Spoofing Vulnerability | 5.4 - MEDIUM | 2023-11-06 | 2023-11-14 |
| CVE-2023-33140 json | Microsoft OneNote Spoofing Vulnerability | 6.5 - MEDIUM | 2023-06-14 | 2023-08-02 |
| CVE-2023-21721 json | Microsoft OneNote Elevation of Privilege Vulnerability | 6.5 - MEDIUM | 2023-02-14 | 2023-03-14 |
| CVE-2017-8509 json | A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory... | 8.8 - HIGH | 2017-06-15 | 2019-10-03 |
| CVE-2017-0197 json | Microsoft OneNote 2007 SP3 and Microsoft OneNote 2010 SP2 allow remote attackers to execute arbitrary code via a crafted docu... | 7.8 - HIGH | 2017-04-12 | 2017-07-11 |
| CVE-2016-3315 json | Microsoft OneNote 2007 SP3, 2010 SP2, 2013 SP1, 2013 RT SP1, 2016, and 2016 for Mac allow remote attackers to obtain sensitiv... | 5.5 - MEDIUM | 2016-08-09 | 2018-10-12 |
| CVE-2015-2503 json | Microsoft Access 2007 SP3, Excel 2007 SP3, InfoPath 2007 SP3, OneNote 2007 SP3, PowerPoint 2007 SP3, Project 2007 SP3, Publis... | 9.3 - HIGH | 2015-11-11 | 2018-10-12 |
| CVE-2014-2815 json | Microsoft OneNote 2007 SP3 allows remote attackers to execute arbitrary code via a crafted OneNote file that triggers creatio... | 8.8 - HIGH | 2014-08-12 | 2021-12-16 |
| CVE-2008-3068 json | Not Provided | 2008-07-07 | 2026-04-23 |