CVE-2018-1027

CVE Database · CVE-2018-1027

CVE-2018-1027

· HIGHModified

CVSS v3.1

7.8

EPSS

19.52%

Published

Apr 11, 2018

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel, Microsoft Office. This CVE ID is unique from CVE-2018-0920, CVE-2018-1011, CVE-2018-1029.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected Products (5)

microsoft · excelvulnerable

microsoft · office_compatibility_packvulnerable

References (6)

http://www.securityfocus.com/bid/103616

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040652

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1027

PatchVendor Advisory

http://www.securityfocus.com/bid/103616

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040652

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1027

KEV Catalog EPSS Scores Vendors All CVEs