High severity7.8NVD Advisory· Published Sep 13, 2017· Updated May 13, 2026

CVE-2017-8743

Description

A remote code execution vulnerability exists in Microsoft PowerPoint 2016, Microsoft SharePoint Enterprise Server 2016, and Office Online Server when they fail to properly handle objects in memory, aka "PowerPoint Remote Code Execution Vulnerability". This CVE ID is unique from CVE-2017-8742.

Affected products

Microsoft/Office Online Server
cpe:2.3:a:microsoft:office_online_server:*:*:*:*:*:*:*:*
Microsoft/Powerpoint
cpe:2.3:a:microsoft:powerpoint:2016:*:*:*:*:*:*:*
Microsoft/Sharepoint Server
cpe:2.3:a:microsoft:sharepoint_server:2016:*:*:*:*:*:*:*
Microsoft Corporation/Microsoft Officev5
Range: Microsoft PowerPoint 2016, Microsoft SharePoint Enterprise Server 2016, and Office Online Server

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-8743nvdPatchVendor Advisory
www.securityfocus.com/bid/100746nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1039323nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.026
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000