CVE-2015-6122

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.3CRITICAL

EPSS

37.5%

top 2.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Excel Microsoft Excel FOR MAC

Timeline

PublishedDec 9

Latest updateMay 14

Description

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/excel2007, 2010, 2011+2

🔴Vulnerability Details

GHSA

GHSA-5m6p-xwjc-mqmg: Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitr↗2022-05-14

▶

CVEList

CVE-2015-6122: Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitr↗2015-12-09

▶