Home

CVE-2018-8162

Description

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka Microsoft Excel Remote Code Execution Vulnerability. This affects Microsoft Office, Microsoft Excel. This CVE ID is unique from CVE-2018-8147, CVE-2018-8148.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
33.91

Associated Vulnerability

VulnerabilityOS Platform
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2010 (KB4022146) 64-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2010 (KB4022146) 32-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB4018399) 64-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2013 (KB4018399) 32-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB4018382) 64-Bit EditionWindows
Microsoft Excel Remote Code Execution Vulnerability for Microsoft Excel 2016 (KB4018382) 32-Bit EditionWindows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-24581Security Update for Microsoft Excel 2010 (KB4022146) 64-Bit Edition
PATCH-24582Security Update for Microsoft Excel 2010 (KB4022146) 32-Bit Edition
PATCH-24595Security Update for Microsoft Excel 2013 (KB4018399) 64-Bit Edition
PATCH-24596Security Update for Microsoft Excel 2013 (KB4018399) 32-Bit Edition
PATCH-24608Security Update for Microsoft Excel 2016 (KB4018382) 64-Bit Edition
PATCH-24607Security Update for Microsoft Excel 2016 (KB4018382) 32-Bit Edition

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234