9.3

CVE-2018-8502

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in Protected View, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftExcel Version2010 Updatesp2
MicrosoftExcel Version2013 Updatesp1
MicrosoftExcel Version2013 Updatesp1 SwEditionrt
MicrosoftExcel Version2016
MicrosoftOffice Version2010 Updatesp2
MicrosoftOffice Version2013 Updatesp1
MicrosoftOffice Version2013 Updatesp1 SwEditionrt
MicrosoftOffice Version2016
MicrosoftOffice Version2019
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 26.12% 0.961
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/105498
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041839
Third Party Advisory
VDB Entry