Unrated severityCISA KEVNVD Advisory· Published Sep 11, 2019· Updated Oct 21, 2025

CVE-2019-1297

Description

A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.

Affected products

Microsoft/Microsoft Excelv5
Range: 2010 Service Pack 2 (32-bit editions)
Microsoft/Microsoft Officev5
Range: 2016 for Mac
Microsoft/Office 365 ProPlusv5
Range: 32-bit Systems

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1297mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.033
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000