9.3

CVE-2017-8509

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8510, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CVE-2017-8506.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2007 Updatesp3
MicrosoftOffice Version2010 Updatesp2
MicrosoftOffice Version2013 Updatesp1
MicrosoftOffice Version2016
MicrosoftOffice Compatibility Pack Version- Updatesp3
MicrosoftOffice Web Apps Version2010
MicrosoftOnenote Version2010
MicrosoftSharepoint Server Version2010 Updatesp2
MicrosoftSharepoint Server Version2013 Updatesp1
MicrosoftSharepoint Server Version2016
MicrosoftWord Version2007 Updatesp3
MicrosoftWord Version2010 Updatesp2
MicrosoftWord Version2013 Updatesp1
MicrosoftWord Version2013 Updatesp1 SwEditionrt
MicrosoftWord Version2016
MicrosoftWord For Mac Version2016
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.26% 0.905
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/98812
Third Party Advisory
VDB Entry