CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-11884

Microsoft Excel 2016 Click-to-Run (C2R) allows an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11882.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.439

EPSS Ranking 97.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 9.3

References

http://www.securityfocus.com/bid/101766
http://www.securitytracker.com/id/1039783
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11884
http://www.securityfocus.com/bid/101766
http://www.securitytracker.com/id/1039783
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11884

Products affected by CVE-2017-11884

Microsoft » Excel » Version: 2016

cpe:2.3:a:microsoft:excel:2016

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-11884

Products

Pricing

Contact Us