CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0541

A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.841

EPSS Ranking 99.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.3

Proposed Action

Microsoft MSHTML engine contains an improper input validation vulnerability that allows for remote code execution vulnerability.

Ransomware Campaign

Unknown

References

Products affected by CVE-2019-0541

Microsoft » Excel Viewer » Version: 2007

cpe:2.3:a:microsoft:excel_viewer:2007
Microsoft » Internet Explorer » Version: 10

cpe:2.3:a:microsoft:internet_explorer:10
Microsoft » Internet Explorer » Version: 11

cpe:2.3:a:microsoft:internet_explorer:11
Microsoft » Internet Explorer » Version: 9

cpe:2.3:a:microsoft:internet_explorer:9
Microsoft » Office » Version: 2010

cpe:2.3:a:microsoft:office:2010
Microsoft » Office » Version: 2013

cpe:2.3:a:microsoft:office:2013
Microsoft » Office » Version: 2016

cpe:2.3:a:microsoft:office:2016
Microsoft » Office » Version: 2019

cpe:2.3:a:microsoft:office:2019
Microsoft » Office 365 Proplus » Version: N/A

cpe:2.3:a:microsoft:office_365_proplus:-
Microsoft » Office Word Viewer » Version: N/A

cpe:2.3:a:microsoft:office_word_viewer:-
Microsoft » Windows 10 1507 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1507:-
Microsoft » Windows 10 1607 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1607:-
Microsoft » Windows 10 1703 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1703:-
Microsoft » Windows 10 1709 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1709:-
Microsoft » Windows 10 1803 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1803:-
Microsoft » Windows 10 1809 » Version: N/A

cpe:2.3:o:microsoft:windows_10_1809:-
Microsoft » Windows 7 » Version: N/A

cpe:2.3:o:microsoft:windows_7:-
Microsoft » Windows 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_8.1:-
Microsoft » Windows Rt 8.1 » Version: N/A

cpe:2.3:o:microsoft:windows_rt_8.1:-
Microsoft » Windows Server 2008 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2008:-
Microsoft » Windows Server 2008 » Version: r2

cpe:2.3:o:microsoft:windows_server_2008:r2
Microsoft » Windows Server 2012 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2012:-
Microsoft » Windows Server 2012 » Version: r2

cpe:2.3:o:microsoft:windows_server_2012:r2
Microsoft » Windows Server 2016 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2016:-
Microsoft » Windows Server 2019 » Version: N/A

cpe:2.3:o:microsoft:windows_server_2019:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0541

Products

Pricing

Contact Us