ID |
CVE-2018-8281
|
Summary |
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory, aka "Microsoft Office Remote Code Execution Vulnerability." This affects Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Microsoft Office, Microsoft Office Word Viewer. |
References |
|
Vulnerable Configurations |
-
cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os:*:*
cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os:*:*
-
cpe:2.3:a:microsoft:office:2016:*:*:*:click-to-run:*:*:*
cpe:2.3:a:microsoft:office:2016:*:*:*:click-to-run:*:*:*
-
cpe:2.3:a:microsoft:office_compatibility_pack:-:sp3:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_compatibility_pack:-:sp3:*:*:*:*:*:*
-
cpe:2.3:a:microsoft:office_powerpoint_viewer:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_powerpoint_viewer:-:*:*:*:*:*:*:*
-
cpe:2.3:a:microsoft:office_word_viewer:-:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_word_viewer:-:*:*:*:*:*:*:*
|
CVSS |
Base: | 9.3 (as of 24-08-2020 - 17:37) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-noinfo |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
MEDIUM |
NONE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
COMPLETE |
COMPLETE |
|
cvss-vector
via4
|
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
refmap
via4
|
|
Last major update |
24-08-2020 - 17:37 |
Published |
11-07-2018 - 00:29 |
Last modified |
24-08-2020 - 17:37 |