VDB
CVE-2020-1446
CVE-2020-1446
PUBLISHED
CVSS 8.800000190734863 HIGH
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.
EPSS 39.92% · 97.4th percentile
Risk Scores
CVSS 3.1
8.800000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
39.92%
97.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Microsoft Office Online Server | unspecified |
| Microsoft | Microsoft Office | *, 2010 Service Pack 2 (32-bit editions), 2019 for Mac |
| microsoft | office_online_server | 1.0 |
| microsoft | office | 2019, 2019, 2010 |
| microsoft | sharepoint_server | 2010, 2019 |
| microsoft | sharepoint_enterprise_server | 2013, 2016 |
| Microsoft | Microsoft 365 Apps for Enterprise for 32-bit Systems | unspecified |
| microsoft | 365_apps | |
| Microsoft | Microsoft Word | 2013 RT Service Pack 1, 2013 Service Pack 1 (64-bit editions), * |
| microsoft | word_rt | 2013 |
| Microsoft | Microsoft Office Web Apps | 2013 Service Pack 1, 2010 Service Pack 2 |
| microsoft | word | 2010, 2013, 2016 |
| Microsoft | Microsoft 365 Apps for Enterprise for 64-bit Systems | unspecified |
| Microsoft | Microsoft SharePoint Enterprise Server | 2016, 2013 Service Pack 1 |
| Microsoft | Microsoft SharePoint Server | 2010 Service Pack 2, 2019 |
| microsoft | office_web_apps | 2013, 2010 |
Exploit Intelligence
Timeline
- Jul 14, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 30, 2023 EPSS Score
- May 13, 2023 EPSS Score