Unrated severityNVD Advisory· Published Oct 10, 2018· Updated Aug 5, 2024

CVE-2018-8432

Description

A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Remote Code Execution Vulnerability." This affects Windows 7, Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Microsoft Excel Viewer, Microsoft PowerPoint Viewer, Windows Server 2019, Windows Server 2008 R2, Windows 10, Windows Server 2008.

Affected products

Microsoft/Officev5
Range: 365 ProPlus for 32-bit Systems
Microsoft/Excel Viewercpe-rescue
Range: 2007 Service Pack 3
Microsoft/Office Visiocpe-rescue
Range: 2016 for Mac
Microsoft/Office Word Viewercpe-rescue
Range: Microsoft Office Word Viewer
Microsoft/Powerpoint Viewercpe-rescue
Range: 2007
Microsoft/Windows 10cpe-rescue
Range: Version 1809 for 32-bit Systems
Microsoft/Windows 7cpe-rescue
Range: 32-bit Systems Service Pack 1
Microsoft/Windows Server 2008cpe-rescue2 versions
32-bit Systems Service Pack 2+ 1 more
- (no CPE)range: 32-bit Systems Service Pack 2
- (no CPE)range: Itanium-Based Systems Service Pack 1
Microsoft/Windows Server 2019cpe-rescue
Range: (Server Core installation)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/105458mitrevdb-entryx_refsource_BID
www.securitytracker.com/id/1041823mitrevdb-entryx_refsource_SECTRACK
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8432mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.027
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000