First published: Wed Dec 12 2018(Updated: )
A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka "Microsoft PowerPoint Remote Code Execution Vulnerability." This affects Microsoft Office, Office 365 ProPlus, Microsoft PowerPoint, Microsoft SharePoint, Microsoft PowerPoint Viewer, Office Online Server, Microsoft SharePoint Server.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office | =2016 | |
Microsoft Office | =2019 | |
Microsoft Office | =2019 | |
Microsoft Office 365 Proplus | ||
Microsoft Office Compatibility Pack | =sp3 | |
Microsoft Office Online Server | ||
Microsoft Office Web Apps | =2010-sp2 | |
Microsoft Office Web Apps | =2013-sp1 | |
Microsoft PowerPoint | =2010-sp2 | |
Microsoft PowerPoint | =2013-sp1 | |
Microsoft PowerPoint | =2016 | |
Microsoft PowerPoint Viewer | ||
Microsoft SharePoint Enterprise Server | =2016 | |
Microsoft SharePoint Server | =2013-sp1 | |
Microsoft SharePoint Server | =2019 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-8628 is a remote code execution vulnerability in Microsoft PowerPoint software.
CVE-2018-8628 affects Microsoft Office, Office 365 ProPlus, and Microsoft PowerPoint.
CVE-2018-8628 has a severity rating of 7.8, which is critical.
To fix CVE-2018-8628, apply the latest security updates provided by Microsoft.
You can find more information about CVE-2018-8628 on the Microsoft Security Guidance Advisory page and the SecurityFocus website.