CVE-2019-1400: Infoleak
First published: Tue Dec 10 2019(Updated: )
An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019-1463.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2013-sp1 | |
| Microsoft Office | =2016 | |
| Microsoft Office | =2019 | |
| Microsoft Office 365 Proplus |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2019-1400?
CVE-2019-1400 is an information disclosure vulnerability in Microsoft Access software.
How severe is CVE-2019-1400?
CVE-2019-1400 has a severity of 5.5, which is considered medium.
Which software versions are affected by CVE-2019-1400?
Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Office 2019, and Microsoft Office 365 Proplus are affected by CVE-2019-1400.
How can I fix CVE-2019-1400?
To fix CVE-2019-1400, apply the necessary updates provided by Microsoft.
Where can I find more information about CVE-2019-1400?
You can find more information about CVE-2019-1400 on the Microsoft Security Guidance Advisory page: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1400
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2
- version/microsoft office/2013-sp1
- version/microsoft office/2016
- version/microsoft office/2019
- canonical/microsoft office 365 proplus