CVE-2020-1446
CVE-2020-1446
Vexday Risk Score
8Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 11.3%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
14 Jul 2020Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.
Affected products
Microsoft · Microsoft 365 Apps for Enterprise for 32-bit SystemsMicrosoft · Microsoft 365 Apps for Enterprise for 64-bit SystemsMicrosoft · Microsoft OfficeMicrosoft · Microsoft Office Online ServerMicrosoft · Microsoft Office Web AppsMicrosoft · Microsoft SharePoint Enterprise ServerMicrosoft · Microsoft SharePoint ServerMicrosoft · Microsoft Word