CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0801

A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or PowerPoint file that was also downloaded.The update addresses the vulnerability by correcting how Office handles these files., aka 'Office Remote Code Execution Vulnerability'.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.233

EPSS Ranking 95.7%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2019-0801

Microsoft » Office » Version: 2010

cpe:2.3:a:microsoft:office:2010
Microsoft » Office » Version: 2013

cpe:2.3:a:microsoft:office:2013
Microsoft » Office » Version: 2016

cpe:2.3:a:microsoft:office:2016
Microsoft » Office » Version: 2019

cpe:2.3:a:microsoft:office:2019
Microsoft » Office 365 Proplus » Version: N/A

cpe:2.3:a:microsoft:office_365_proplus:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-0801

Products

Pricing

Contact Us