Lucene search

CVE-2020-16954

🗓️ 16 Oct 2020 23:16:15Reported by microsoftType

Microsoft Office remote code execution vulnerabilit

Reporter	Title	Published	Views	Family All 14
Prion	Remote code execution	16 Oct 202023:15	–	prion
Cvelist	CVE-2020-16954 Microsoft Office Remote Code Execution Vulnerability	16 Oct 202022:18	–	cvelist
NVD	CVE-2020-16954	16 Oct 202023:15	–	nvd
Microsoft CVE	Microsoft Office Remote Code Execution Vulnerability	13 Oct 202007:00	–	mscve
Microsoft KB	Description of the security update for Office 2013: October 13, 2020	13 Oct 202007:00	–	mskb
Microsoft KB	Description of the security update for Office 2016: October 13, 2020	13 Oct 202007:00	–	mskb
Microsoft KB	Description of the security update for Office 2010: October 13, 2020	13 Oct 202007:00	–	mskb
OpenVAS	Microsoft Office 2013 Service Pack 1 Remote Code Execution Vulnerabilities (KB4486682)	14 Oct 202000:00	–	openvas
OpenVAS	Microsoft Office 2010 Service Pack 2 Remote Code Execution Vulnerabilities (KB486700)	14 Oct 202000:00	–	openvas
OpenVAS	Microsoft Office 2016 Remote Code Execution Vulnerabilities (KB4486682)	14 Oct 202000:00	–	openvas

Nvd

Node

microsoft 365_appsMatch-enterprise

microsoft officeMatch2010sp2

microsoft officeMatch2013sp1

microsoft officeMatch2013sp1rt

microsoft officeMatch2016---

microsoft officeMatch2019-

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2019",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "19.0.0",
        "lessThan": "https://aka.ms/OfficeSecurityReleases",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft 365 Apps for Enterprise",
    "cpes": [
      "cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.1",
        "lessThan": "https://aka.ms/OfficeSecurityReleases",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2016",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2016:*:*:*:*:*:x86:*",
      "cpe:2.3:a:microsoft:office:2016:*:*:*:*:*:x64:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2010 Service Pack 2",
    "cpes": [
      "cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2013 Service Pack 1",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2013:sp1:*:*:rt:*:*:*",
      "cpe:2.3:a:microsoft:office:2013:sp1:*:*:*:*:x86:*",
      "cpe:2.3:a:microsoft:office:2013:sp1:*:*:*:*:x64:*"
    ],
    "platforms": [
      "ARM64-based Systems",
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Source	Link
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-16954

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

16 Oct 2020 23:15Current

7.7High risk

Vulners AI Score7.7

CVSS26.8

CVSS37.8

EPSS0.02709