Description
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Microsoft / Microsoft Excel2010 Service Pack 2 (32-bit editions) β 2010 Service Pack 2 (32-bit editions)
- Microsoft / Microsoft Excel2010 Service Pack 2 (64-bit editions) β 2010 Service Pack 2 (64-bit editions)
- Microsoft / Microsoft Excel2013 Service Pack 1 (32-bit editions) β 2013 Service Pack 1 (32-bit editions)
- Microsoft / Microsoft Excel2013 Service Pack 1 (64-bit editions) β 2013 Service Pack 1 (64-bit editions)
- Microsoft / Microsoft Excel2013 RT Service Pack 1 β 2013 RT Service Pack 1
- Microsoft / Microsoft Excel2016 (32-bit edition) β 2016 (32-bit edition)
- Microsoft / Microsoft Excel2016 (64-bit edition) β 2016 (64-bit edition)
- Microsoft / Microsoft Office2016 for Mac β 2016 for Mac
- Microsoft / Microsoft Office2019 for 32-bit editions β 2019 for 32-bit editions
- Microsoft / Microsoft Office2019 for 64-bit editions β 2019 for 64-bit editions
- Microsoft / Microsoft Office2019 for Mac β 2019 for Mac
- Microsoft / Office 365 ProPlus32-bit Systems β 32-bit Systems
- Microsoft / Office 365 ProPlus64-bit Systems β 64-bit Systems