Word
by Microsoft
Take action — actively targeted
Word is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
65.5%
Confirmed actively exploited (CISA)
7.2%
Public exploit code available
1.4%
Based on 139 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2018-0802 | 7.8 | 94.1% | Yes |
| CVE-2018-0798 | 8.8 | 94.1% | Yes |
| CVE-2015-1641 | 7.8 | 93.6% | Yes |
| CVE-2014-1761 | 7.8 | 92.6% | Yes |
| CVE-2023-21716 | 9.8 | 91.4% | — |
| CVE-2017-11826 | 7.8 | 90.8% | Yes |
| CVE-2012-2539 | 7.8 | 84.4% | Yes |
| CVE-2015-2424 | 8.8 | 76.5% | Yes |
| CVE-2016-7193 | 7.8 | 71.2% | Yes |
| CVE-2007-0671 | 8.8 | 66.8% | Yes |
| CVE-2016-3282 | 7.8 | 54.6% | — |
| CVE-2016-3316 | 7.8 | 50.3% | — |
| CVE-2016-0134 | 7.8 | 48.5% | — |
| CVE-2016-3281 | 7.8 | 48.4% | — |
| CVE-2016-7234 | 7.8 | 48.4% | — |
| CVE-2020-1447 | 8.8 | 46.0% | — |
| CVE-2017-0281 | 7.8 | 43.3% | — |
| CVE-2017-0105 | 5.5 | 43.2% | — |
| CVE-2021-31178 | 5.5 | 41.9% | — |
| CVE-2016-7232 | 7.8 | 40.6% | — |
57
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
7/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.