CVE-2018-8382

🗓️ 15 Aug 2018 17:00:00Reported by microsoftType

"Microsoft Excel discloses memory contents.

Reporter	Title	Published	Views	Family All 26
CNVD	Microsoft Excel Information Disclosure Vulnerability (CNVD-2018-16839)	15 Aug 201800:00	–	cnvd
Check Point Advisories	Microsoft Office Excel Note Record Information Disclosure (CVE-2018-8382)	24 Feb 201900:00	–	checkpoint_advisories
Cvelist	CVE-2018-8382	15 Aug 201817:00	–	cvelist
Microsoft KB	Description of the security update for Microsoft Office Viewers and Office Compatibility Pack: August 14, 2018	14 Aug 201807:00	–	mskb
Microsoft KB	Description of the security update for Microsoft Office Compatibility Pack Service Pack 3: August 14, 2018	14 Aug 201807:00	–	mskb
Microsoft KB	Description of the security update for Excel 2010: August 14, 2018	14 Aug 201807:00	–	mskb
Microsoft KB	Description of the security update for Excel 2016: August 14, 2018	14 Aug 201807:00	–	mskb
Microsoft KB	Description of the security update for Excel 2013: August 14, 2018	14 Aug 201807:00	–	mskb
Kaspersky	KLA11301 Multiple vulnerabilities in Microsoft Office	14 Aug 201800:00	–	kaspersky
Tenable Nessus	Security Update for Microsoft Office (Auguest 2018) (macOS)	14 Aug 201800:00	–	nessus

NVD

Vulners

Node

microsoft excelMatch2010sp2

microsoft excelMatch2013sp1

microsoft excelMatch2016

microsoft excelMatch2016click-to-run

microsoft excel_2013_rtMatchsp1

microsoft excel_viewerMatch2007sp3

microsoft officeMatch2016mac

microsoft office_compatibility_packMatch-sp3

[
  {
    "product": "Microsoft Excel Viewer",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2007 Service Pack 3"
      }
    ]
  },
  {
    "product": "Microsoft Office",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2016 for Mac"
      },
      {
        "status": "affected",
        "version": "Compatibility Pack Service Pack 3"
      }
    ]
  },
  {
    "product": "Microsoft Excel",
    "vendor": "Microsoft",
    "versions": [
      {
        "status": "affected",
        "version": "2010 Service Pack 2 (32-bit editions)"
      },
      {
        "status": "affected",
        "version": "2010 Service Pack 2 (64-bit editions)"
      },
      {
        "status": "affected",
        "version": "2013 RT Service Pack 1"
      },
      {
        "status": "affected",
        "version": "2013 Service Pack 1 (32-bit editions)"
      },
      {
        "status": "affected",
        "version": "2013 Service Pack 1 (64-bit editions)"
      },
      {
        "status": "affected",
        "version": "2016 (32-bit edition)"
      },
      {
        "status": "affected",
        "version": "2016 (64-bit edition)"
      },
      {
        "status": "affected",
        "version": "2016 Click-to-Run (C2R) for 32-bit editions"
      },
      {
        "status": "affected",
        "version": "2016 Click-to-Run (C2R) for 64-bit editions"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/105000
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8382
securitytracker	www.securitytracker.com/id/1041463

21 Nov 2024 04:13Current

5.5Medium risk

Vulners AI Score5.5

CVSS 24.3

CVSS 35.5

EPSS0.28949

CWE-200