Unrated severityNVD Advisory· Published Nov 14, 2018· Updated Aug 5, 2024

CVE-2018-8575

Description

A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.

Affected products

Microsoft/Microsoft Projectllm-create2 versions
(expand)+ 1 more
- (no CPE)
- (no CPE)range: 2010 Service Pack 2 (32-bit editions)
Microsoft/Microsoft Project Serverllm-create
Microsoft/Office 365 ProPlusllm-fuzzy
Microsoft/Officev5
Range: 365 ProPlus for 32-bit Systems
Microsoft/Project Servercpe-rescue
Range: 2013 Service Pack 1 (32-bit edition)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/105807mitrevdb-entryx_refsource_BID
www.securitytracker.com/id/1042116mitrevdb-entryx_refsource_SECTRACK
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8575mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.023
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000