CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-0850

Microsoft Outlook 2007, Microsoft Outlook 2010, Microsoft Outlook 2013, Microsoft Outlook 2016, and Microsoft Office 2016 Click-to-Run allow an elevation of privilege vulnerability due to how the format of incoming message is validated, aka "Microsoft Outlook Elevation of Privilege Vulnerability".

Exploit prediction scoring system (EPSS) score

EPSS Score 0.113

EPSS Ranking 93.2%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/102866
http://www.securitytracker.com/id/1040382
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0850
http://www.securityfocus.com/bid/102866
http://www.securitytracker.com/id/1040382
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0850

Products affected by CVE-2018-0850

Microsoft » Office » Version: 2016

cpe:2.3:a:microsoft:office:2016
Microsoft » Outlook » Version: 2007

cpe:2.3:a:microsoft:outlook:2007
Microsoft » Outlook » Version: 2010

cpe:2.3:a:microsoft:outlook:2010
Microsoft » Outlook » Version: 2013

cpe:2.3:a:microsoft:outlook:2013
Microsoft » Outlook » Version: 2016

cpe:2.3:a:microsoft:outlook:2016

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0850

Products

Pricing

Contact Us