8.8

CVE-2020-0760

A remote code execution vulnerability exists when Microsoft Office improperly loads arbitrary type libraries, aka 'Microsoft Office Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0991.

Data is provided by the National Vulnerability Database (NVD)
MicrosoftAccess Version2010 Updatesp2
MicrosoftAccess Version2013 Updatesp1
MicrosoftAccess Version2016
MicrosoftExcel Version2010 Updatesp2
MicrosoftExcel Version2013 Updatesp1 SwEditionrt
MicrosoftExcel Version2016
MicrosoftOffice Version2010 Updatesp2
MicrosoftOffice Version2013 Updatesp1 SwEdition-
MicrosoftOffice Version2013 Updatesp1 SwEditionrt
MicrosoftOffice Version2016
MicrosoftOffice Version2019 SwPlatform-
MicrosoftOutlook Version2010 Updatesp2
MicrosoftOutlook Version2013 Updatesp1 SwEdition-
MicrosoftOutlook Version2013 Updatesp1 SwEditionrt
MicrosoftOutlook Version2016
MicrosoftPowerpoint Version2010 Updatesp2
MicrosoftPowerpoint Version2013 Updatesp1 SwEdition-
MicrosoftPowerpoint Version2013 Updatesp1 SwEditionrt
MicrosoftPowerpoint Version2016
MicrosoftProject Version2010 Updatesp2
MicrosoftProject Version2013 Updatesp1
MicrosoftProject Version2016
MicrosoftPublisher Version2010 Updatesp2
MicrosoftPublisher Version2013 Updatesp1
MicrosoftPublisher Version2016
MicrosoftVisio Version2010 Updatesp2
MicrosoftVisio Version2013 Updatesp1
MicrosoftVisio Version2016
MicrosoftWord Version2010 Updatesp2
MicrosoftWord Version2013 Updatesp1 SwEdition-
MicrosoftWord Version2013 Updatesp1 SwEditionrt
MicrosoftWord Version2016
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 34.57% 0.968
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 8.8 2.8 5.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P