Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB4484357
HistoryJul 14, 2020 - 7:00 a.m.

Description of the security update for Office Web Apps Server 2013: July 14, 2020

2020-07-1407:00:00
Microsoft
support.microsoft.com
9

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

91.8%

JSON

Description of the security update for Office Web Apps Server 2013: July 14, 2020

Summary

This security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the following security advisories:

How to get and install the update

Method 1: Microsoft Update

This update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see Windows Update: FAQ.

Method 2: Microsoft Update Catalog

To get the standalone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

More information

Security update deployment information

For deployment information about this update, see security update deployment information: July 14, 2020.

Security update replacement information

This security update replaces previously released update 4475609.

File hash information

File name SHA1 hash SHA256 hash
wacserver2013-kb4484357-fullfile-x64-glb.exe DAF0EC60CC59CE45B4E511CD001397B06D5636AD 305748E48A899BD6710043FBE9F0784F20DA41BFF27ECCD6256C3D7EA4218B2E

File informationDownload the list of files that are included in security update 4484357.

Information about protection and security

Protect yourself online: Windows Security supportLearn how we guard against cyber threats: Microsoft Security

Related

nessus 7
mskb 12
openvas 5
prion 6
cve 6
kaspersky 1
mscve 6
fedora 7
avleonov 1
nessus
nessus
Security Updates for Microsoft Office Web Apps (July 2020)
2020-07-14 00:00:00
Security Updates for Microsoft Word Products C2R (July 2020)
2022-06-10 00:00:00
Security Updates for Microsoft Word Products (July 2020)
2020-07-14 00:00:00
mskb
mskb
Description of the security update for Word 2016: July 14, 2020
2020-07-14 07:00:00
Description of the security update for SharePoint Server 2019 Language Pack: July 14, 2020
2020-07-14 07:00:00
Description of the security update for Word 2013: July 14, 2020
2020-07-14 07:00:00
openvas
openvas
Microsoft Word 2013 Service Pack 1 Multiple Remote Code Execution Vulnerabilities (KB4484446)
2020-07-15 00:00:00
Microsoft Word 2010 Service Pack 2 Multiple Remote Code Execution Vulnerabilities (KB4484458)
2020-07-15 00:00:00
Microsoft Word 2016 Multiple Remote Code Execution Vulnerabilities (KB4484438)
2020-07-15 00:00:00
prion
prion
Remote code execution
2020-07-14 23:15:00
Remote code execution
2020-07-14 23:15:00
Remote code execution
2020-07-14 23:15:00
cve
cve
CVE-2020-1446
2020-07-14 23:15:00
CVE-2020-1448
2020-07-14 23:15:00
CVE-2020-1447
2020-07-14 23:15:00
kaspersky
kaspersky
KLA11864 Multiple vulnerabilities in Microsoft Office
2020-07-14 00:00:00
mscve
mscve
Microsoft Word Remote Code Execution Vulnerability
2020-07-14 07:00:00
Microsoft Office Information Disclosure Vulnerability
2020-07-14 07:00:00
Office Web Apps XSS Vulnerability
2020-07-14 07:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: python3-3.7.8-2.fc31
2020-08-14 02:43:34
[SECURITY] Fedora 32 Update: python36-3.6.11-3.fc32
2020-08-06 04:03:40
[SECURITY] Fedora 31 Update: python36-3.6.11-3.fc31
2020-08-12 01:22:50
avleonov
avleonov
Microsoft Patch Tuesday July 2020: my new open source project Vulristics, DNS SIGRed, RDP Client and SharePoint
2020-08-02 04:05:22

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.038 Low

EPSS

Percentile

91.8%

JSON
Related for KB4484357
nessus7mskb12openvas5prion6cve6kaspersky1mscve6fedora7avleonov1