CVE-2018-8246

Опубликовано: 14 июн. 2018

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Средний

Описание

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Excel Viewer, Microsoft Office, Microsoft Excel.

Ссылки

http://www.securityfocus.com/bid/104322
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041109
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8246
Patch
Vendor Advisory
http://www.securityfocus.com/bid/104322
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1041109
Third Party Advisory
VDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8246
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel:2013:sp1:*:*:rt:*:*:*

cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:excel_viewer:-:*:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2010:sp2:*:*:*:*:*:*

cpe:2.3:a:microsoft:office:2016:*:*:*:click-to-run:*:*:*

cpe:2.3:a:microsoft:office_compatibility_pack:-:sp3:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.22636

Средний

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

CVE-2018-8246

msrc

около 7 лет назад

Microsoft Excel Information Disclosure Vulnerability

GHSA-hp3h-g8ww-jfhh