Microsoft Office Information Disclosure Vulnerability

Microsoft Office Information Disclosure Vulnerability

CVE-2018-0853 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

Microsoft Office 2010 SP2, Microsoft Office 2013 SP1 and RT SP1, Microsoft Office 2016, and Microsoft Office 2016 Click-to-Run (C2R) allow an information disclosure vulnerability, due to how Office initializes the affected variable, aka "Microsoft Office Information Disclosure Vulnerability".

Learn more about our Cis Benchmark Audit For Microsoft Office.