Microsoft Excel Memory Corruption Vulnerability
CVE-2016-7213

7.8HIGH

Key Information:

Vendor
Microsoft
Status
Excel
Excel For Mac
Office Compatibility Pack
Vendor
CVE Published:
10 November 2016

Summary

This vulnerability in Microsoft Excel can lead to arbitrary code execution when a user opens a specially crafted Office document. Affected versions of Excel may allow attackers to exploit memory corruption errors, providing them with the ability to execute their own code on the victim's machine. Users are advised to be cautious with opening documents from untrusted sources to mitigate potential risks.

References

https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS
http://www.securitytracker.com/id/1037246
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/93993
vdb-entryx_refsource_BID

EPSS Score

28% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.