CVE-2017-8509

EUVD-2017-17459
A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8510, CVE-2017-8511, CVE-2017-8512, CVE-2017-0260, and CVE-2017-8506.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 90%
Affected Products (NVD)
VendorProductVersion
microsoftoffice_compatibility_pack
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/98812
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8509
http://www.securityfocus.com/bid/98812
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8509