How severe is CVE-2017-11935?

CVE-2017-11935 has a CVSS v3 score of 7.8 (HIGH).

CVE-2017-11935

Name: office
Author: microsoft

7.8HIGH

Microsoft Office 2016 Click-to-Run (C2R) allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability".

Publicado: 12/12/2017Actualizado: 4/20/2025

Descripción

Microsoft Office 2016 Click-to-Run (C2R) allows a remote code execution vulnerability due to the way files are handled in memory, aka "Microsoft Excel Remote Code Execution Vulnerability".

Análisis IAImpulsado por IA

Productos Afectados

microsoftoffice

2016

Referencias

http://www.securityfocus.com/bid/102067
Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1039989
Third Party AdvisoryVDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11935
PatchVendor Advisory
http://www.securityfocus.com/bid/102067
Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1039989
Third Party AdvisoryVDB Entry
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11935
PatchVendor Advisory