CVE-2014-6332
Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
95.0%
p100
KEV
YES
Mar 25, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
95.0%EPSS · 30 days95.0%
2026-06-302026-07-16
Product
Microsoft / Windows
Vulnerability
Microsoft Windows Object Linking & Embedding (OLE) Automation Array Remote Code Execution Vulnerability
Added to KEV
Mar 25, 2022
Remediate by
Apr 15, 2022
Known ransomware use
No
Summary description
OleAut32.dll in OLE in Microsoft Windows allows remote attackers to remotely execute code via a crafted web site.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2014-6332
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2025-59287—100.0%
KEV—80Microsoft Windows Server Update Service (WSUS) Deserialization of Untrusted Data Vulnerability—CVE-2021-34527—100.0%
KEV—80Microsoft Windows Print Spooler Remote Code Execution Vulnerability—CVE-2022-30190—99.9%
KEV—80Microsoft Windows Support Diagnostic Tool (MSDT) Remote Code Execution Vulnerability—CVE-2023-36884—99.9%
KEV—80Microsoft Windows Search Remote Code Execution Vulnerability—CVE-2008-4250—99.9%
KEV—80Microsoft Windows Buffer Overflow Vulnerability—CVE-2024-21412—99.9%
KEV—80Microsoft Windows Internet Shortcut Files Security Feature Bypass Vulnerability—