High severity7.8NVD Advisory· Published Sep 13, 2017· Updated Jun 17, 2026
CVE-2017-8632
CVE-2017-8632
Description
A remote code execution vulnerability exists in Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1, Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3, when they fail to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-8630, CVE-2017-8631, and CVE-2017-8744.
Affected products
9cpe:2.3:a:microsoft:excel_for_mac:2011:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:excel_for_mac:2011:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:excel_for_mac:2016:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office_compatibility_pack:*:sp3:*:*:*:*:*:*
- cpe:2.3:a:microsoft:office_web_apps:2013:*:*:*:*:*:*:*
- Microsoft Corporation/Microsoft Officev5Range: Microsoft Excel 2010 Service Pack 2, Microsoft Excel 2013 Service Pack 1, Microsoft Excel 2013 RT Service Pack 1 Microsoft Excel 2016, Microsoft Office Web Apps 2013, Microsoft Excel for Mac 2011, Microsoft Excel 2016 for Mac, and Microsoft Office Compatibility Pack Service Pack 3
Patches
Vulnerability mechanics
References
3- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8632nvdPatchVendor Advisory
- www.securityfocus.com/bid/100734nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039315nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.