CVE-2018-8430
First published: Thu Sep 13 2018(Updated: )
A remote code execution vulnerability exists in Microsoft Word if a user opens a specially crafted PDF file, aka "Word PDF Remote Code Execution Vulnerability." This affects Microsoft Word, Microsoft Office.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2016 | |
| Microsoft Word | =2016 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-8430?
CVE-2018-8430 is a remote code execution vulnerability in Microsoft Word that occurs when a user opens a specially crafted PDF file.
How does CVE-2018-8430 affect Microsoft Word?
CVE-2018-8430 affects Microsoft Word by allowing remote code execution if a user opens a malicious PDF file.
What is the severity of CVE-2018-8430?
CVE-2018-8430 has a severity rating of 7.8 out of 10, which is considered critical.
Which versions of Microsoft Office and Microsoft Word are affected by CVE-2018-8430?
Microsoft Office 2013 SP1, Microsoft Office 2016 (Click-to-Run edition), and Microsoft Word 2016 are affected by CVE-2018-8430.
How can I mitigate the risk of CVE-2018-8430?
To mitigate the risk of CVE-2018-8430, it is recommended to apply the necessary security updates provided by Microsoft.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2013-sp1
- version/microsoft office/2016
- canonical/microsoft word
- version/microsoft word/2016