CVE-2018-8427

CVE Database · CVE-2018-8427

CVE-2018-8427

· N/AModified

CVSS v3.1

N/A

EPSS

2.29%

Published

Oct 10, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Microsoft PowerPoint Viewer, Microsoft Excel Viewer.

Weaknesses (CWE)

CWE-200

Affected Products (8)

microsoft · excel_viewervulnerable

microsoft · officevulnerable

microsoft · office_365_proplusvulnerable

microsoft · office_compatibility_packvulnerable

microsoft · office_word_viewervulnerable

microsoft · powerpoint_viewervulnerable

microsoft · windows_server_2008vulnerable

References (6)

http://www.securityfocus.com/bid/105453