CVE-2018-8575 vulnerability in Microsoft Products
Published on November 14, 2018

A remote code execution vulnerability exists in Microsoft Project software when it fails to properly handle objects in memory, aka "Microsoft Project Remote Code Execution Vulnerability." This affects Microsoft Project, Office 365 ProPlus, Microsoft Project Server.

NVD

Products Associated with CVE-2018-8575

stack.watch emails you whenever new vulnerabilities are published in Microsoft Office 365 Proplus or Microsoft Project. Just hit a watch button to start following.

Microsoft Office 365 Proplus

Microsoft Project

Affected Versions

Microsoft Project:

Version 2010 Service Pack 2 (32-bit editions) is affected.
Version 2010 Service Pack 2 (64-bit editions) is affected.
Version 2016 (32-bit edition) is affected.
Version 2016 (64-bit edition) is affected.

Microsoft Office:

Version 365 ProPlus for 32-bit Systems is affected.
Version 365 ProPlus for 64-bit Systems is affected.

Microsoft Project Server:

Version 2013 Service Pack 1 (32-bit edition) is affected.
Version 2013 Service Pack 1 (64-bit edition) is affected.

Exploit Probability

EPSS

24.72%

Percentile

96.03%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-8575 vulnerability in Microsoft ProductsPublished on November 14, 2018

Products Associated with CVE-2018-8575

Affected Versions

Exploit Probability

CVE-2018-8575 vulnerability in Microsoft Products
Published on November 14, 2018