CVE-2018-0792
Severity CVSS v4.0:
Pending analysis
Type:
CWE-787
Out-of-bounds Write
Publication date:
10/01/2018
Last modified:
24/08/2020
Description
Microsoft Word 2016 in Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Word Remote Code Execution Vulnerability". This CVE is unique from CVE-2018-0794.
Impact
Base Score 3.x
8.80
Severity 3.x
HIGH
Base Score 2.0
9.30
Severity 2.0
HIGH
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os_x:*:* | ||
cpe:2.3:a:microsoft:office:2016:c2r:*:*:*:*:*:* | ||
cpe:2.3:a:microsoft:office_online_server:2016:*:*:*:*:*:*:* | ||
cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:*:*:*:* | ||
cpe:2.3:a:microsoft:word:2016:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page