CVE-2018-1028
CVE-2018-1028
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 19.1%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Apr 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A remote code execution vulnerability exists when the Office graphics component improperly handles specially crafted embedded fonts, aka "Microsoft Office Graphics Remote Code Execution Vulnerability." This affects Word, Microsoft Office, Microsoft SharePoint, Excel, Microsoft SharePoint Server.
Affected products
Microsoft · ExcelMicrosoft · Microsoft OfficeMicrosoft · Microsoft SharePointMicrosoft · Microsoft SharePoint ServerMicrosoft · WordWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →