CVE-2018-8575

EUVD-2018-20192
A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
microsoftoffice_365_proplus
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/105807
http://www.securitytracker.com/id/1042116
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575
http://www.securityfocus.com/bid/105807
http://www.securitytracker.com/id/1042116
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575