9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.944 High
EPSS
Percentile
99.2%
11/12/2019
High
Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, spoof user interface, execute arbitrary code.
Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Microsoft Office 2019 for Mac
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft SharePoint Enterprise Server 2016
Office 365 ProPlus for 32-bit Systems
Microsoft Office Online Server
Microsoft Office 2016 (64-bit edition)
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft SharePoint Enterprise Server 2013 Service Pack 1
Microsoft Office 2013 RT Service Pack 1
Microsoft SharePoint Foundation 2010 Service Pack 2
Microsoft SharePoint Foundation 2013 Service Pack 1
Microsoft Excel 2016 for Mac
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2016 for Mac
Microsoft Excel 2010 Service Pack 2 (64-bit editions)
Microsoft Excel 2013 RT Service Pack 1
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Excel 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2016 (32-bit edition)
Microsoft Excel 2016 (64-bit edition)
Office 365 ProPlus for 64-bit Systems
Microsoft SharePoint Server 2019
Excel Services
Office Online Server
Microsoft Excel 2016 (32-bit edition)
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2019-1443
CVE-2019-1449
CVE-2019-1447
CVE-2019-1446
CVE-2019-1445
CVE-2019-1448
CVE-2019-1457
CVE-2019-1402
CVE-2019-1442
ACE
CVE-2019-14434.0Warning
CVE-2019-14475.8High
CVE-2019-14464.3Warning
CVE-2019-14455.8High
CVE-2019-14489.3Critical
CVE-2019-14576.8High
CVE-2019-14022.1Warning
CVE-2019-14424.3Warning
4484142
4484148
4484159
4484119
4484143
4484164
4484160
4484113
4484149
4484151
4484144
4484127
4484141
4484158
4484157
4484165
4484152
support.microsoft.com/kb/4484113
support.microsoft.com/kb/4484119
support.microsoft.com/kb/4484127
support.microsoft.com/kb/4484141
support.microsoft.com/kb/4484142
support.microsoft.com/kb/4484143
support.microsoft.com/kb/4484144
support.microsoft.com/kb/4484148
support.microsoft.com/kb/4484149
support.microsoft.com/kb/4484151
support.microsoft.com/kb/4484152
support.microsoft.com/kb/4484157
support.microsoft.com/kb/4484158
support.microsoft.com/kb/4484159
support.microsoft.com/kb/4484160
support.microsoft.com/kb/4484164
support.microsoft.com/kb/4484165
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1402
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1442
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1443
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1445
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1446
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1447
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1448
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-1457
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1402
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1442
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1443
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1445
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1446
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1447
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1448
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1449
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2019-1457
portal.msrc.microsoft.com/en-us/security-guidance
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-Excel/
threats.kaspersky.com/en/product/Microsoft-Office/
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.4 High
AI Score
Confidence
High
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.944 High
EPSS
Percentile
99.2%