5.5

CVE-2017-11877

EPSS 15.1%
Veröffentlicht 15.11.2017 03:29:01
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Compatibility Pack Service Pack 3, Microsoft Excel Viewer 2007 Service Pack 3, and Microsoft Excel 2016 for Mac allow a security feature bypass by not enforcing macro settings on an Excel document, aka "Microsoft Excel Security Feature Bypass Vulnerability".

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Excel Version2007

Microsoft ≫ Excel Version2010

Microsoft ≫ Excel Version2013

Microsoft ≫ Excel Version2013 Updatesp1

Microsoft ≫ Excel Version2016

Microsoft ≫ Excel Version2016 SwPlatformmac_os_x

Microsoft ≫ Excel Viewer Version2007 Updatesp3

Microsoft ≫ Office Compatibility Pack Version- Updatesp3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	15.1%	0.943

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.5	1.8	3.6	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

http://www.securityfocus.com/bid/101747

Third Party Advisory

VDB Entry

http://www.securitytracker.com/id/1039783

Third Party Advisory

VDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11877

Patch

Vendor Advisory

Issue Tracking

https://nvd.nist.gov/vuln/detail/CVE-2017-11877

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-11877

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-11877

EUVD