CVE-2018-8173
Description
A remote code execution vulnerability exists in Microsoft InfoPath when the software fails to properly handle objects in memory, aka Microsoft InfoPath Remote Code Execution Vulnerability. This affects Microsoft Infopath.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
33.91
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft InfoPath Remote Code Execution Vulnerability for Microsoft InfoPath 2013 (KB3162075) 32-Bit Edition | Windows |
| Microsoft InfoPath Remote Code Execution Vulnerability for Microsoft InfoPath 2013 (KB3162075) 64-Bit Edition | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-24603 | Security Update for Microsoft InfoPath 2013 (KB3162075) 32-Bit Edition |
| PATCH-24604 | Security Update for Microsoft InfoPath 2013 (KB3162075) 64-Bit Edition |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234