9.3
CVE-2019-1462
- EPSS 21.31%
- Veröffentlicht 10.12.2019 22:15:16
- Zuletzt bearbeitet 21.11.2024 04:36:44
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
LoginA remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerability'.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Office 365 Proplus Version-
Microsoft ≫ Powerpoint Version2010 Updatesp2
Microsoft ≫ Powerpoint Version2013 Updatesp1 SwEditionrt
Microsoft ≫ Powerpoint Version2016
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 21.31% | 0.955 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-908 Use of Uninitialized Resource
The product uses or accesses a resource that has not been initialized.