Aller au contenu
Appaloosa Scout
HIGH 7.8 KEV

CVE-2015-1641

Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word for Mac 2011, Office Compatibility Pack SP3, Word Automation Services on SharePoint Server 2010 SP2 and 2013 SP1, and Office Web Apps Server 2010 SP2 and 2013 SP1 allow remote attackers to execute arbitrary code via a crafted RTF document, aka "Microsoft Office Memory Corruption Vulnerability."

CVSS v3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CISA Known Exploited Vulnerability

Ajouté au KEV
2021-11-03
Deadline remédiation
2022-05-03
Action requise
Apply updates per vendor instructions.
Ransomware
Non

Apps mobiles affectées

Microsoft Word
iOS
com.microsoft.Office.Word
1 CVE 1 KEV
Microsoft Word: Edit Documents
Android
com.microsoft.office.word
1 CVE 1 KEV

Configurations CPE vulnérables

Vendor Produit Plateforme Versions CPE 2.3 URI
microsoft word Android cpe:2.3:a:microsoft:word:2007:sp3:*:*:*:*:*:*
microsoft word iOS cpe:2.3:a:microsoft:word:2007:sp3:*:*:*:*:*:*
microsoft word Android cpe:2.3:a:microsoft:word:2010:sp2:*:*:*:*:*:*
microsoft word iOS cpe:2.3:a:microsoft:word:2010:sp2:*:*:*:*:*:*
microsoft word Android cpe:2.3:a:microsoft:word:2013:sp1:*:*:-:*:*:*
microsoft word iOS cpe:2.3:a:microsoft:word:2013:sp1:*:*:-:*:*:*
microsoft word Android cpe:2.3:a:microsoft:word:2013:sp1:*:*:rt:*:*:*
microsoft word iOS cpe:2.3:a:microsoft:word:2013:sp1:*:*:rt:*:*:*
Voir sur NVD ↗ Catalogue CISA KEV ↗