CVE-2020-1583: Microsoft Word Information Disclosure Vulnerability
First published: Mon Aug 17 2020(Updated: )
An information disclosure vulnerability exists when Microsoft Word improperly discloses the contents of its memory, aka 'Microsoft Word Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1502, CVE-2020-1503.
Credit: secure@microsoft.com secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft 365 Apps | ||
| Microsoft Office | =2010-sp2 | |
| Microsoft Office | =2016 | |
| Microsoft Office | =2019 | |
| Microsoft Office | =2019 | |
| Microsoft Office Online Server | ||
| Microsoft Office Web Apps | =2010-sp2 | |
| Microsoft Office Web Apps | =2013-sp1 | |
| Microsoft SharePoint Enterprise Server | =2013-sp1 | |
| Microsoft SharePoint Enterprise Server | =2016 | |
| Microsoft SharePoint Server | =2010-sp2 | |
| Microsoft SharePoint Server | =2019 | |
| Microsoft Word | =2010-sp2 | |
| Microsoft Word | =2013-sp1 | |
| Microsoft Word | =2013-sp1 | |
| Microsoft Word | =2016 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-1583?
CVE-2020-1583 is an information disclosure vulnerability in Microsoft Word.
What is the severity of CVE-2020-1583?
The severity of CVE-2020-1583 is medium (5.5).
Which software versions are affected by CVE-2020-1583?
Microsoft Office LTSC for Mac 2021, Microsoft Office 2010 SP2, Microsoft Office 2016, Microsoft Office 2019, Microsoft Office Online Server, Microsoft Office Web Apps, Microsoft SharePoint Enterprise Server, Microsoft SharePoint Server, and Microsoft Word 2010 SP2, 2013 SP1, and 2016 are affected by CVE-2020-1583.
How does CVE-2020-1583 occur?
CVE-2020-1583 occurs when Microsoft Word improperly discloses the contents of its memory.
Where can I find more information about CVE-2020-1583?
You can find more information about CVE-2020-1583 at the following link: [CVE-2020-1583 Advisory](https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1583)
- agent/type
- agent/first-publish-date
- agent/author
- agent/softwarecombine
- agent/remedy
- agent/references
- agent/event
- agent/title
- agent/severity
- collector/mitre-cve
- source/MITRE
- agent/tags
- agent/last-modified-date
- agent/description
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft 365 apps
- canonical/microsoft office
- version/microsoft office/2010-sp2
- version/microsoft office/2016
- version/microsoft office/2019
- canonical/microsoft office online server
- canonical/microsoft office web apps
- version/microsoft office web apps/2010-sp2
- version/microsoft office web apps/2013-sp1
- canonical/microsoft sharepoint enterprise server
- version/microsoft sharepoint enterprise server/2013-sp1
- version/microsoft sharepoint enterprise server/2016
- canonical/microsoft sharepoint server
- version/microsoft sharepoint server/2010-sp2
- version/microsoft sharepoint server/2019
- canonical/microsoft word
- version/microsoft word/2010-sp2
- version/microsoft word/2013-sp1
- version/microsoft word/2016