VDB
CVE-2017-8632
CVE-2017-8632
PUBLISHED
CVSS 7.800000190734863 HIGH
A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3, when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8631, and CVE-2017-8744.
EPSS 19.05% · 95.4th percentile
Risk Scores
CVSS v3.0
7.800000190734863
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
19.05%
95.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | excel_for_mac | 2011, 2016 |
| microsoft | office_web_apps | 2013 |
| microsoft | excel | 2016, 2010, 2013 |
| microsoft | office_compatibility_pack | |
| Microsoft Corporation | Microsoft Office | * |
Timeline
- Sep 13, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 25, 2021 EPSS Score
- Feb 4, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jun 9, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Jan 7, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 2, 2023 EPSS Score
- May 29, 2023 EPSS Score