9.3

CVE-2019-1462

A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerability'.

Data is provided by the National Vulnerability Database (NVD)
MicrosoftOffice Version2016 SwPlatformmac_os
MicrosoftOffice Version2019 SwPlatform-
MicrosoftOffice Version2019 SwPlatformmacos
MicrosoftPowerpoint Version2010 Updatesp2
MicrosoftPowerpoint Version2013 Updatesp1 SwEditionrt
MicrosoftPowerpoint Version2016
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 21.31% 0.954
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
CWE-908 Use of Uninitialized Resource

The product uses or accesses a resource that has not been initialized.