CVE-2019-0823
First published: Tue Apr 09 2019(Updated: )
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0824, CVE-2019-0825, CVE-2019-0826, CVE-2019-0827.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2019-0823?
CVE-2019-0823 has a severity rating of critical as it allows for remote code execution.
How do I fix CVE-2019-0823?
To fix CVE-2019-0823, apply the latest security updates provided by Microsoft for the affected version of Office.
Which software is affected by CVE-2019-0823?
CVE-2019-0823 specifically affects Microsoft Office 2010 Service Pack 2.
Can CVE-2019-0823 be exploited remotely?
Yes, CVE-2019-0823 can be exploited remotely by an attacker to execute arbitrary code.
What are the potential impacts of CVE-2019-0823?
The potential impacts of CVE-2019-0823 include unauthorized access to system resources and data compromise.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2