CVE Vulnerabilities

CVE-2019-0585

Published: Jan 08, 2019 | Modified: Aug 24, 2020
CVSS 3.x
8.8
HIGH
Source:
NVD
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka Microsoft Word Remote Code Execution Vulnerability. This affects Word, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft SharePoint, Microsoft Office Online Server, Microsoft Word, Microsoft SharePoint Server.

Affected Software

Name Vendor Start Version End Version
Office Microsoft 2010-sp2 (including) 2010-sp2 (including)
Office Microsoft 2016 (including) 2016 (including)
Office Microsoft 2019 (including) 2019 (including)
Office_365_proplus Microsoft - (including) - (including)
Office_online_server Microsoft - (including) - (including)
Office_web_apps_server Microsoft 2010-sp2 (including) 2010-sp2 (including)
Office_word_viewer Microsoft - (including) - (including)
Sharepoint_server Microsoft 2013-sp1 (including) 2013-sp1 (including)
Sharepoint_server Microsoft 2016 (including) 2016 (including)
Sharepoint_server Microsoft 2019 (including) 2019 (including)
Word Microsoft 2010-sp2 (including) 2010-sp2 (including)
Word Microsoft 2013-sp1 (including) 2013-sp1 (including)
Word Microsoft 2016 (including) 2016 (including)
Word_automation_services Microsoft - (including) - (including)

References