CVE-2018-1027

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel, Microsoft Office. This CVE ID is unique from CVE-2018-0920, CVE-2018-1011, CVE-2018-1029.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
VendorProductVersion
microsoftoffice_compatibility_pack
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/103616
http://www.securitytracker.com/id/1040652
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1027
http://www.securityfocus.com/bid/103616
http://www.securitytracker.com/id/1040652
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-1027