First published: Tue Apr 09 2019(Updated: )
A remote code execution vulnerability exists when the Microsoft Office Access Connectivity Engine improperly handles objects in memory, aka 'Microsoft Office Access Connectivity Engine Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-0823, CVE-2019-0824, CVE-2019-0825, CVE-2019-0827.
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Office | =2010-sp2 | |
Microsoft Office | =2013-sp1 | |
Microsoft Office | =2013-sp1 | |
Microsoft Office | =2016 | |
Microsoft Office | =2019 | |
Microsoft Office 365 Proplus |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-0826 is a remote code execution vulnerability in the Microsoft Office Access Connectivity Engine.
CVE-2019-0826 has a severity rating of 7.8 (high).
CVE-2019-0826 affects Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Office 2019, and Microsoft Office 365 Proplus.
An attacker exploiting CVE-2019-0826 can execute arbitrary code on the vulnerable system.
To fix CVE-2019-0826, apply the security updates provided by Microsoft.