CVE-2020-1448 vulnerability in Microsoft Products
Published on July 14, 2020

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1446, CVE-2020-1447.

NVD

Products Associated with CVE-2020-1448

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-1448 are published in these products:

Microsoft Office

Microsoft Office Online Server

Microsoft Office Web Apps

Microsoft Sharepoint Server

Microsoft Word

Affected Versions

Microsoft SharePoint Enterprise Server:

Version 2016 is affected.

Microsoft SharePoint Server:

Version 2019 is affected.

Microsoft Office:

Version 2019 for 32-bit editions is affected.
Version 2019 for 64-bit editions is affected.

Microsoft Office Online Server:

Version unspecified is affected.

Microsoft Word:

Version 2016 (32-bit edition) is affected.
Version 2016 (64-bit edition) is affected.
Version 2013 RT Service Pack 1 is affected.
Version 2013 Service Pack 1 (32-bit editions) is affected.
Version 2013 Service Pack 1 (64-bit editions) is affected.

Microsoft Office Web Apps:

Version 2013 Service Pack 1 is affected.

Exploit Probability

EPSS

39.26%

Percentile

97.20%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-1448 vulnerability in Microsoft ProductsPublished on July 14, 2020

Products Associated with CVE-2020-1448

Affected Versions

Exploit Probability

CVE-2020-1448 vulnerability in Microsoft Products
Published on July 14, 2020