vulnerability

CVE-2018-8427: Microsoft Graphics Components Information Disclosure Vulnerability [Office for Mac]

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:P/I:N/A:N)	Oct 9, 2018	Dec 11, 2018	Aug 13, 2019

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

Oct 9, 2018

Added

Dec 11, 2018

Modified

Aug 13, 2019

Description

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could obtain information that could be useful for further exploitation.
To exploit the vulnerability, a user would have to open a specially crafted file.
The security update addresses the vulnerability by correcting how Microsoft Graphics Components handle objects in memory.

Solutions

office-for-mac-upgrade-16_16_3office-for-mac-upgrade-16_18_0

References

BID-105453
CVE-2018-8427
https://attackerkb.com/topics/CVE-2018-8427
URL-https://docs.microsoft.com/en-us/officeupdates/release-notes-office-for-mac#october-2018-release
URL-https://support.office.com/en-us/article/Release-notes-for-Office-2016-for-Mac-ed2da564-6d53-4542-9954-7e3209681a41

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today