CVE-2019-0669

An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
microsoftexcel_viewer
-
microsoftoffice_365_proplus
-
microsoftoffice_compatibility_pack
-
microsoft365_apps
𝑥
< 1901
microsoftoffice
𝑥
< 1901
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/106897
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0669
http://www.securityfocus.com/bid/106897
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0669