9.3

CVE-2019-0585

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft SharePoint, Microsoft Office Online Server, Microsoft Word, Microsoft SharePoint Server.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftOffice Version2010 Updatesp2
MicrosoftOffice Version2016 SwPlatformmac_os_x
MicrosoftOffice Version2019
MicrosoftOffice Version2019 SwPlatformmacos
MicrosoftOffice Web Apps Server Version2010 Updatesp2
MicrosoftSharepoint Server Version2013 Updatesp1 SwEditionenterprise
MicrosoftSharepoint Server Version2016 SwEditionenterprise
MicrosoftSharepoint Server Version2019
MicrosoftWord Version2010 Updatesp2
MicrosoftWord Version2013 Updatesp1
MicrosoftWord Version2013 Updatesp1 SwEditionrt
MicrosoftWord Version2016
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 30.34% 0.965
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
http://www.securityfocus.com/bid/106392
Third Party Advisory
VDB Entry