CVE-2019-1331
First published: Thu Oct 10 2019(Updated: )
A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-1327.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Excel | =2010-sp2 | |
| Microsoft Excel | =2013-sp1 | |
| Microsoft Excel | =2013-sp1 | |
| Microsoft Excel | =2016 | |
| Microsoft Office | =2010-sp2 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2016 | |
| Microsoft Office Mac Os | =2016 | |
| Microsoft Office | =2019 | |
| Microsoft Office | =2019 | |
| Microsoft Office 365 Proplus | ||
| Microsoft Office Online Server | ||
| Microsoft Excel Services | ||
| Microsoft SharePoint Server | =2010-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-1331?
CVE-2019-1331 is a remote code execution vulnerability in Microsoft Excel software.
What is the severity of CVE-2019-1331?
CVE-2019-1331 has a severity rating of 8.8, which is considered critical.
Which software is affected by CVE-2019-1331?
Microsoft Excel, Microsoft Office, Microsoft Office 365 Proplus, Microsoft Office Online Server, and Microsoft Excel Services are all affected by CVE-2019-1331.
How can I fix CVE-2019-1331?
To fix CVE-2019-1331, it is recommended to update your Microsoft Excel software to the latest version.
Where can I find more information about CVE-2019-1331?
You can find more information about CVE-2019-1331 on the Microsoft Security Guidance Advisory at the following link: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1331
- agent/type
- agent/references
- agent/author
- agent/last-modified-date
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/description
- agent/first-publish-date
- agent/event
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft excel
- version/microsoft excel/2010-sp2
- version/microsoft excel/2013-sp1
- version/microsoft excel/2016
- canonical/microsoft office
- version/microsoft office/2010-sp2
- version/microsoft office/2013-sp1
- version/microsoft office/2016
- canonical/microsoft office mac os
- version/microsoft office mac os/2016
- version/microsoft office/2019
- canonical/microsoft office 365 proplus
- canonical/microsoft office online server
- canonical/microsoft excel services
- canonical/microsoft sharepoint server
- version/microsoft sharepoint server/2010-sp2