CVE-2020-17126

Name of the Vulnerable Software and Affected Versions Microsoft Excel (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Office Web Apps (affected versions not specified) Microsoft Office Online Server (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified)

Description The issue is related to a buffer overflow read, which may allow an attacker to access protected information. There is an information disclosure vulnerability in Microsoft Excel that enables attackers to obtain sensitive information.

Recommendations For Microsoft Excel, consider restricting access to sensitive information until a patch is available. For Microsoft Office, avoid using vulnerable components until a fix is provided. For Microsoft Office Web Apps, restrict access to minimize the risk of exploitation. For Microsoft Office Online Server, consider disabling vulnerable functions until a patch is available. For Microsoft 365 Apps for Enterprise, restrict access to sensitive information until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.