CVE-2018-8575

A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
microsoftCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
VendorProductVersion
microsoftoffice_365_proplus
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105807
http://www.securitytracker.com/id/1042116
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575
http://www.securityfocus.com/bid/105807
http://www.securitytracker.com/id/1042116
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575