CVE-2018-8574

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions (affected versions not specified) Office 365 ProPlus versions (affected versions not specified) Microsoft Office versions (affected versions not specified)

Description A remote code execution issue exists due to the software's failure to properly handle objects in memory. This could allow a remote attacker to execute arbitrary code with the privileges of the current user by using a specially crafted file. If the current user has administrative rights, the attacker could take control of the system, install programs, view, change, or delete data, or create new accounts with full user rights. Users with fewer user rights on the system may be less impacted.

Recommendations For Microsoft Excel, consider applying security updates or patches as soon as they become available to fix the issue. For Office 365 ProPlus, update to a version that includes the fix for this issue. For Microsoft Office, apply the necessary security patches to resolve the vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.