CVE-2020-0980
First published: Wed Apr 15 2020(Updated: )
A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Office | =2010-sp2 | |
| Microsoft Office Mac Os | =2016 | |
| Microsoft Office | =2019 | |
| Microsoft Office 365 Proplus | ||
| Microsoft Office Online Server | ||
| Microsoft Office Web Apps | =2010-sp2 | |
| Microsoft Office Web Apps | =2013-sp1 | |
| Microsoft SharePoint Enterprise Server | =2013-sp1 | |
| Microsoft SharePoint Enterprise Server | =2016 | |
| Microsoft SharePoint Server | =2010-sp2 | |
| Microsoft SharePoint Server | =2019 | |
| Microsoft Word | =2010-sp2 | |
| Microsoft Word | =2013-sp1 | |
| Microsoft Word | =2013-sp1 | |
| Microsoft Word | =2016 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-0980?
CVE-2020-0980 is a remote code execution vulnerability in Microsoft Word software.
How severe is CVE-2020-0980?
CVE-2020-0980 has a severity rating of 7.8 out of 10, classified as critical.
Which software versions are affected by CVE-2020-0980?
Microsoft Office 2010 SP2, Microsoft Office 2016, Microsoft Office 2019, Microsoft Office 365 Proplus, Microsoft Office Online Server, Microsoft Office Web Apps 2010 SP2, Microsoft Office Web Apps 2013 SP1, Microsoft SharePoint Enterprise Server 2013 SP1, Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2010 SP2, Microsoft SharePoint Server 2019, and Microsoft Word 2010 SP2, Microsoft Word 2013 SP1, Microsoft Word 2016 are affected by CVE-2020-0980.
How can I fix CVE-2020-0980?
Apply the latest security updates provided by Microsoft to fix CVE-2020-0980.
Where can I find more information about CVE-2020-0980?
You can find more information about CVE-2020-0980 on the Microsoft Security Guidance Advisory page at https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0980.
- agent/type
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/author
- agent/last-modified-date
- agent/remedy
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- vendor/microsoft
- canonical/microsoft office
- version/microsoft office/2010-sp2
- canonical/microsoft office mac os
- version/microsoft office mac os/2016
- version/microsoft office/2019
- canonical/microsoft office 365 proplus
- canonical/microsoft office online server
- canonical/microsoft office web apps
- version/microsoft office web apps/2010-sp2
- version/microsoft office web apps/2013-sp1
- canonical/microsoft sharepoint enterprise server
- version/microsoft sharepoint enterprise server/2013-sp1
- version/microsoft sharepoint enterprise server/2016
- canonical/microsoft sharepoint server
- version/microsoft sharepoint server/2010-sp2
- version/microsoft sharepoint server/2019
- canonical/microsoft word
- version/microsoft word/2010-sp2
- version/microsoft word/2013-sp1
- version/microsoft word/2016