CVE-2018-8163

Опубликовано: 09 мая 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Средний

Описание

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Excel.

Ссылки

http://www.securityfocus.com/bid/104059
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040857
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8163
Patch
Vendor Advisory
http://www.securityfocus.com/bid/104059
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1040857
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8163
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2016:*:*:*:click-to-run:*:*:*

EPSS

Процентиль: 96%

0.28949

Средний

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2018-8163

msrc

больше 7 лет назад

Microsoft Excel Information Disclosure Vulnerability

GHSA-3jcj-hgr2-f986