CVE-2019-0801

high-risk

Published 2019-04-09

A remote code execution vulnerability exists when Microsoft Office fails to properly handle certain files.To exploit the vulnerability, an attacker would have to convince a user to open a specially crafted URL file that points to an Excel or PowerPoint file that was also downloaded.The update addresses the vulnerability by correcting how Office handles these files., aka 'Office Remote Code Execution Vulnerability'.

Do I need to act?

19.4% chance of exploitation in next 30 days

EPSS score — higher than 81% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.8/10 High

LOCAL / LOW complexity

Affected Products (6)

Office

Office 365 Proplus

Affected Vendors

Microsoft

References (4)

Patch https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0801

https://www.zerodayinitiative.com/advisories/ZDI-19-358/

Patch https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0801

https://www.zerodayinitiative.com/advisories/ZDI-19-358/

/ 100

high-risk

Severity 24/34 · High

Exploitability 14/34 · Moderate

Exposure 13/34 · Low