CVE-2018-1011
First published: Thu Apr 12 2018(Updated: )
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka "Microsoft Excel Remote Code Execution Vulnerability." This affects Microsoft Excel. This CVE ID is unique from CVE-2018-0920, CVE-2018-1027, CVE-2018-1029.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Excel | =2010-sp2 | |
| Microsoft Excel | =2013-sp1 | |
| Microsoft Excel Rt | =2013-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-1011?
CVE-2018-1011 is a remote code execution vulnerability in Microsoft Excel software.
How does CVE-2018-1011 affect Microsoft Excel?
CVE-2018-1011 can allow remote attackers to execute arbitrary code on a vulnerable system through Excel.
What is the severity of CVE-2018-1011?
CVE-2018-1011 has a severity rating of 7.8, which is classified as critical.
Which versions of Microsoft Excel are affected by CVE-2018-1011?
CVE-2018-1011 affects Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, and Microsoft Excel RT 2013 SP1.
How can CVE-2018-1011 be fixed?
To fix CVE-2018-1011, users should apply the latest security updates provided by Microsoft.
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/severity
- agent/references
- agent/remedy
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft excel
- version/microsoft excel/2010-sp2
- version/microsoft excel/2013-sp1
- canonical/microsoft excel rt
- version/microsoft excel rt/2013-sp1