CVE-2018-0798 - Microsoft Office Memory Corruption Vulnerability
Project:Microsoft
Product:Office
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
Microsoft Office Memory Corruption Vulnerability
Description
Microsoft Office contains a memory corruption vulnerability due to the way objects are handled in memory. Successful exploitation allows for remote code execution in the context of the current user. This vulnerability is known to be chained with CVE-2018-0802.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0798