EUVD-2018-1653

🗓️ 15 Feb 2018 02:00:00Reported by EUVDType

Microsoft Office versions have an information disclosure vulnerability from variable initialization issues.

Reporter	Title	Published	Views	Family All 18
CNVD	Microsoft Office Information Disclosure Vulnerability (CNVD-2018-03531)	14 Feb 201800:00	–	cnvd
CVE	CVE-2018-0853	15 Feb 201802:00	–	cve
Cvelist	CVE-2018-0853	15 Feb 201802:00	–	cvelist
Microsoft KB	Description of the security update for Office 2010: February 13, 2018	13 Feb 201808:00	–	mskb
Microsoft KB	Description of the security update for Office 2013: February 13, 2018	13 Feb 201808:00	–	mskb
Microsoft KB	Description of the security update for Office 2016: February 13, 2018	13 Feb 201808:00	–	mskb
Kaspersky	KLA11197 Multiple vulnerabilities in Microsoft Office	13 Feb 201800:00	–	kaspersky
Microsoft CVE	Microsoft Office Information Disclosure Vulnerability	13 Feb 201808:00	–	mscve
NVD	CVE-2018-0853	15 Feb 201802:29	–	nvd
OpenVAS	Microsoft Office 2010 Service Pack 2 Information Disclosure Vulnerability (KB3114874)	14 Feb 201800:00	–	openvas

[
  {
    "enisaIdVendor": [
      {
        "id": "1b21bbe3-848a-3e8a-9963-86372d2f1ba3",
        "vendor": {
          "name": "Microsoft Corporation"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "ac3849f4-3279-3729-8514-2f67c33f5f2d",
        "product": {
          "name": "Microsoft Office"
        },
        "product_version": "Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R)."
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/102868
portal	www.portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0853
securitytracker	www.securitytracker.com/id/1040381

17 Sep 2024 01:56Current

3.6Low risk

Vulners AI Score3.6

CVSS 33.3

CVSS 24.3

EPSS0.13146