CVE Vulnerabilities

CVE-2018-8597

Published: Dec 12, 2018 | Modified: Aug 24, 2020
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka Microsoft Excel Remote Code Execution Vulnerability. This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8636.

Affected Software

Name Vendor Start Version End Version
Excel Microsoft 2010-sp2 (including) 2010-sp2 (including)
Excel Microsoft 2013-sp1 (including) 2013-sp1 (including)
Excel Microsoft 2016 (including) 2016 (including)
Office Microsoft 2010-sp2 (including) 2010-sp2 (including)
Office Microsoft 2016 (including) 2016 (including)
Office Microsoft 2019 (including) 2019 (including)
Office_365 Microsoft - (including) - (including)
Office_compatibility_pack Microsoft –sp3 (including) –sp3 (including)

References