CVE-2020-0892
CVE-2020-0892
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 11.5%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
12 Mar 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0850, CVE-2020-0851, CVE-2020-0852, CVE-2020-0855.
Affected products
Microsoft · Microsoft OfficeMicrosoft · Microsoft Office Online ServerMicrosoft · Microsoft Office Web AppsMicrosoft · Microsoft SharePoint Enterprise ServerMicrosoft · Microsoft SharePoint FoundationMicrosoft · Microsoft SharePoint ServerMicrosoft · Microsoft WordMicrosoft · Office 365 ProPlus