CVE-2018-8597

EUVD-2018-20212
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8636.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
microsoftoffice_365
-
microsoftoffice_compatibility_pack
-
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106100
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8597
http://www.securityfocus.com/bid/106100
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8597