8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.317 Low
EPSS
Percentile
96.9%
10/09/2018
High
Multiple serious vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, obtain sensitive information.
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Excel 2013 RT Service Pack 1
Microsoft Excel 2016 (64-bit edition)
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Excel 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2013 RT Service Pack 1
Microsoft Excel 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2016 (64-bit edition)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2016 (32-bit edition)
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Office 365 ProPlus for 32-bit Systems
Office 365 ProPlus for 64-bit Systems
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2019 for 64-bit editions
Microsoft Excel 2016 (32-bit edition)
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2018-8488
CVE-2018-8501
CVE-2018-8427
CVE-2018-8518
CVE-2018-8432
CVE-2018-8498
CVE-2018-8480
CVE-2018-8504
CVE-2018-8502
ADV180026
ACE
CVE-2018-84329.3Critical
CVE-2018-84272.1Warning
CVE-2018-84883.5Warning
CVE-2018-85019.3Critical
CVE-2018-85183.5Warning
CVE-2018-84983.5Warning
CVE-2018-84803.5Warning
CVE-2018-85049.3Critical
CVE-2018-85029.3Critical
4092464
4461448
4092481
4092482
4092477
4461466
4461447
4092444
4461449
4461457
4092439
4227167
4461460
4227170
4092453
4461450
4092437
4461440
4022138
4092483
4461437
4461434
4461445
support.microsoft.com/kb/4022138
support.microsoft.com/kb/4092437
support.microsoft.com/kb/4092439
support.microsoft.com/kb/4092444
support.microsoft.com/kb/4092453
support.microsoft.com/kb/4092464
support.microsoft.com/kb/4092477
support.microsoft.com/kb/4092481
support.microsoft.com/kb/4092482
support.microsoft.com/kb/4092483
support.microsoft.com/kb/4227167
support.microsoft.com/kb/4227170
support.microsoft.com/kb/4461434
support.microsoft.com/kb/4461437
support.microsoft.com/kb/4461440
support.microsoft.com/kb/4461445
support.microsoft.com/kb/4461447
support.microsoft.com/kb/4461448
support.microsoft.com/kb/4461449
support.microsoft.com/kb/4461450
support.microsoft.com/kb/4461457
support.microsoft.com/kb/4461460
support.microsoft.com/kb/4461466
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8427
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8432
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8480
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8488
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8498
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8501
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8502
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8504
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-8518
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV180026
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8427
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8432
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8480
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8488
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8498
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8501
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8502
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8504
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8518
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/product/Microsoft-Excel/
threats.kaspersky.com/en/product/Microsoft-Office/
threats.kaspersky.com/en/product/Microsoft-Word/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.317 Low
EPSS
Percentile
96.9%