Vulnerability Description
An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Microsoft PowerPoint Viewer, Microsoft Excel Viewer.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Excel Viewer | 2007 |
| Microsoft | Office | 2016 |
| Microsoft | Office 365 Proplus | - |
| Microsoft | Office Compatibility Pack | - |
| Microsoft | Office Word Viewer | - |
| Microsoft | Powerpoint Viewer | 2007 |
| Microsoft | Windows Server 2008 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/105453Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041823Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8427PatchVendor Advisory
- http://www.securityfocus.com/bid/105453Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1041823Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8427PatchVendor Advisory
FAQ
What is CVE-2018-8427?
CVE-2018-8427 is a vulnerability with a CVSS score of 5.5 (MEDIUM). An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This af...
How severe is CVE-2018-8427?
CVE-2018-8427 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-8427?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Excel Viewer, Microsoft Office, Microsoft Office 365 Proplus, Microsoft Office Compatibility Pack, Microsoft Office Word Viewer.