CVE-2019-0824
First published: Tue Apr 09 2019(Updated: )
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0823, CVE-2019-0825, CVE-2019-0826, CVE-2019-0827.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2016 | |
| Microsoft Office | =2019 | |
| Microsoft Office 365 Proplus |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-0824?
CVE-2019-0824 is a remote code execution vulnerability in the Microsoft Office Access Connectivity Engine.
How does CVE-2019-0824 affect Microsoft Office?
CVE-2019-0824 affects various versions of Microsoft Office, including 2010, 2013, 2016, 2019, and Office 365 ProPlus.
What is the severity of CVE-2019-0824?
CVE-2019-0824 has a severity rating of 7.8, which is considered high.
How can I fix CVE-2019-0824?
To fix CVE-2019-0824, Microsoft has released security updates. It is recommended to install the latest updates for affected versions of Microsoft Office.
Where can I find more information about CVE-2019-0824?
You can find more information about CVE-2019-0824 on the Microsoft Security Guidance Advisory page: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0824
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2
- version/microsoft office/2013-sp1
- version/microsoft office/2016
- version/microsoft office/2019
- canonical/microsoft office 365 proplus