Onenote
by Microsoft
Review your setup
Onenote has some exploitation signals but is generally manageable with regular updates.
What to do
- Keep this software updated
- Review your configuration for unnecessary exposure
- Check for known-vulnerable components or plugins
What Attackers Target
Vulnerabilities with high exploit probability
33.3%
Confirmed actively exploited (CISA)
8.3%
Public exploit code available
0.0%
Based on 12 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2007-0671 | 8.8 | 66.8% | Yes |
| CVE-2016-3315 | 5.5 | 34.7% | — |
| CVE-2017-0197 | 7.8 | 27.8% | — |
| CVE-2014-2815 | 8.8 | 19.6% | — |
| CVE-2023-21721 | 6.5 | 6.1% | — |
| CVE-2017-8509 | 8.8 | 5.6% | — |
| CVE-2023-33140 | 6.5 | 5.5% | — |
| CVE-2025-29822 | 7.8 | 0.8% | — |
| CVE-2025-21402 | 7.8 | 0.5% | — |
| CVE-2023-36769 | 4.6 | 0.1% | — |
| CVE-2026-26133 | 7.1 | 0.1% | — |
| CVE-2024-41159 | 7.1 | 0.0% | — |
30
/ 100
moderate-risk
Active Threat
28/50 · Moderate
Exploit Availability
2/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.