← volver
CVE-2017-8631

CVE-2017-8631

EPSS 16.4%
Vexday Risk Score
8Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS EPSS 16.4%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
13 sep 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A remote code execution vulnerability exists in Excel Services, Microsoft Excel 2007 Service Pack 3, Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Office Compatibility Pack Service Pack 3, Microsoft Excel Web App 2013 Service Pack 1, Microsoft Excel Viewer 2007 Service Pack 3, and Office Online Server when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8632, and CVE-2017-8744.
Productos afectados
Microsoft Corporation · Microsoft Office

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8631http://www.securityfocus.com/bid/100751http://www.securitytracker.com/id/1039315