CVE-2018-1011
published 2018-04-12CVE-2018-1011: A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel. This CVE ID is unique from CVE-2018-0920, CVE-2018-1027, CVE-2018-1029.
Affected
22 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | excel | — | — |
| microsoft | excel | — | — |
| microsoft | excel | — | — |
| microsoft | excel | — | — |
| microsoft | excel_rt | — | — |
| microsoft | excel_viewer | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel | — | — |
| microsoft | microsoft_excel_viewer | — | — |
| microsoft | microsoft_office | — | — |
| microsoft | microsoft_office | — | — |
| msrc | microsoft_excel_2010_service_pack_2 | — | — |
| msrc | microsoft_excel_2013_rt_service_pack_1 | — | — |
| msrc | microsoft_excel_2013_service_pack_1 | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H