Vulnerability Details CVE-2020-1223
A remote code execution vulnerability exists when Microsoft Word for Android fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file.The update addresses the vulnerability by correcting how Microsoft Word for Android handles specially crafted URL files., aka 'Word for Android Remote Code Execution Vulnerability'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.368
EPSS Ranking 96.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.8
References