Information Disclosure Vulnerability in Microsoft Access Software
CVE-2019-1400
5.5MEDIUM
Key Information:
- Vendor
- Microsoft
- Vendor
- CVE Published:
- 10 December 2019
Summary
An information disclosure vulnerability exists in Microsoft Access software, resulting from improper handling of objects in memory. This flaw may allow attackers to access sensitive information that should be protected. Organizations using affected versions of Microsoft Access should implement security measures to safeguard their data, ensuring proper application updates and monitoring user access.
Affected Version(s)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2016 (32-bit edition)
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved