CVE-2018-8312
Description
A remote code execution vulnerability exists when Microsoft Access fails to properly handle objects in memory, aka Microsoft Access Remote Code Execution Vulnerability. This affects Microsoft Access, Microsoft Office.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
29.758
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Microsoft Access Remote Code Execution Vulnerability for Microsoft Access 2016 (KB4018338) 64-Bit Edition | Windows |
| Microsoft Access Remote Code Execution Vulnerability for Microsoft Access 2016 (KB4018338) 32-Bit Edition | Windows |
| Microsoft Access Remote Code Execution Vulnerability for Microsoft Access 2013 (KB4018351) 64-Bit Edition | Windows |
| Microsoft Access Remote Code Execution Vulnerability for Microsoft Access 2013 (KB4018351) 32-Bit Edition | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-24880 | Security Update for Microsoft Access 2016 (KB4018338) 64-Bit Edition |
| PATCH-24879 | Security Update for Microsoft Access 2016 (KB4018338) 32-Bit Edition |
| PATCH-24873 | Security Update for Microsoft Access 2013 (KB4018351) 64-Bit Edition |
| PATCH-24872 | Security Update for Microsoft Access 2013 (KB4018351) 32-Bit Edition |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234