Vulnerability Description
A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Office 365 ProPlus, Microsoft Office, Microsoft Outlook. This CVE ID is unique from CVE-2018-8522, CVE-2018-8524, CVE-2018-8576.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Office 365 Proplus | - |
| Microsoft | Outlook | 2010 |
| Microsoft | Outlook Rt | 2013 |
| Microsoft | Windows Server 2019 | - |
References
- http://www.securityfocus.com/bid/105825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1042110Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582PatchVendor Advisory
- http://www.securityfocus.com/bid/105825Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1042110Third Party AdvisoryVDB Entry
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8582PatchVendor Advisory
FAQ
What is CVE-2018-8582?
CVE-2018-8582 is a vulnerability with a CVSS score of 8.8 (HIGH). A remote code execution vulnerability exists in the way that Microsoft Outlook parses specially modified rule export files, aka "Microsoft Outlook Remote Code Execution Vulnerability." This affects Of...
How severe is CVE-2018-8582?
CVE-2018-8582 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-8582?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Office 365 Proplus, Microsoft Outlook, Microsoft Outlook Rt, Microsoft Windows Server 2019.