CVE-2020-1226

EUVD-2020-12105
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1225.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 95%
Affected Products (NVD)
VendorProductVersion
microsoft365_apps
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1226
https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1027
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1226
https://www.talosintelligence.com/vulnerability_reports/TALOS-2020-1027