CVE-2018-8539
First published: Wed Nov 14 2018(Updated: )
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka "Microsoft Word Remote Code Execution Vulnerability." This affects Microsoft SharePoint Server, Microsoft Office. This CVE ID is unique from CVE-2018-8573.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 | |
| Microsoft Office Web Apps | =2010-sp2 | |
| Microsoft SharePoint Server | =2010-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-8539?
CVE-2018-8539 is a remote code execution vulnerability in Microsoft Word software.
Which software is affected by CVE-2018-8539?
Microsoft SharePoint Server and Microsoft Office are affected by CVE-2018-8539.
How severe is CVE-2018-8539?
CVE-2018-8539 is a critical vulnerability with a severity score of 7.8.
How can I fix CVE-2018-8539?
To fix CVE-2018-8539, apply the security updates provided by Microsoft.
Where can I find more information about CVE-2018-8539?
You can find more information about CVE-2018-8539 on the Microsoft Security Guidance Advisory page.
- collector/nvd-index
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/last-modified-date
- agent/remedy
- agent/author
- agent/first-publish-date
- agent/tags
- agent/description
- agent/event
- agent/type
- agent/softwarecombine
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2
- canonical/microsoft office web apps
- version/microsoft office web apps/2010-sp2
- canonical/microsoft sharepoint server
- version/microsoft sharepoint server/2010-sp2