Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and... · CVE-2018-0853 · GitHub Advisory Database · GitHub

Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and...

Moderate severity Unreviewed Published May 13, 2022 to the GitHub Advisory Database • Updated Feb 1, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow an information disclosure vulnerability, due to how Office initializes the affected variable, aka "Microsoft Office Information Disclosure Vulnerability".

References

Published by the National Vulnerability Database

Feb 15, 2018

Published to the GitHub Advisory Database May 13, 2022

Last updated Feb 1, 2023