← Back

CVE-2017-8512

nvd nist
Published: Jun 15, 2017Modified: May 13, 2026

JSON object

Loading...
8.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

A remote code execution vulnerability exists in Microsoft Office when the software fails to properly handle objects in memory, aka "Office Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8509, CVE-2017-8510, CVE-2017-8511, CVE-2017-0260, and CVE-2017-8506.

Affected (11)

Microsoft
6 products
Office
Office Online Server
Office Web Apps
Office Web Apps Server
Sharepoint Enterprise Server
Word Automation Services
Configuration A
10 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Office
Version 2007 sp3
Office
Version 2010 sp2
Office
Version 2013 sp1
Office
Version 2013 sp1
Office
Version 2016
Office Online Server
Version 2016
Office Web Apps
Version 2010 sp2
Office Web Apps Server
Version 2013 sp1
Microsoft
Sharepoint Enterprise Server
Version 2013 sp1
Sharepoint Enterprise Server
Version 2016
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Word Automation Services
All versions
Running on/withPlatform Versions
Microsoft
Sharepoint Server
Version 2010 sp2

References (6)

Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
Third Party AdvisoryVDB Entry
Source: secure@microsoft.com
MitigationPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationPatchVendor Advisory

Timeline

No history available yet.