CVE-2018-8627

CVE Database · CVE-2018-8627

CVE-2018-8627

· N/AModified

CVSS v3.1

N/A

EPSS

8.66%

Published

Dec 11, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

An information disclosure vulnerability exists when Microsoft Excel software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Excel Information Disclosure Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft Excel, Microsoft Excel Viewer, Excel. This CVE ID is unique from CVE-2018-8598.

Weaknesses (CWE)

CWE-908

Affected Products (12)

microsoft · excelvulnerable

microsoft · excel_viewervulnerable

microsoft · officevulnerable

microsoft · office_365_proplusvulnerable

References (4)

http://www.securityfocus.com/bid/106120

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8627

PatchVendor Advisory

http://www.securityfocus.com/bid/106120

Third Party AdvisoryVDB Entry

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8627

PatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs