PT-2020-5267 · Microsoft · 365 Apps+4

Published

2020-12-08

Updated

2023-12-31

CVE-2020-17123

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Microsoft Excel versions prior to the fixed version Microsoft Office Web Apps (affected versions not specified) Microsoft 365 Apps (affected versions not specified) Microsoft Office (affected versions not specified) Office Online Server (affected versions not specified)

Description The issue is related to errors in the code of Microsoft Excel and other Microsoft products, allowing a remote attacker to execute arbitrary code.

Recommendations For Microsoft Excel, update to a version that contains a fix for this issue. For Microsoft Office Web Apps, Microsoft 365 Apps, Microsoft Office, and Office Online Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-17

Related Identifiers

BDU:2020-05901

CVE-2020-17123

Affected Products

365 Apps

Office Excel

Office

Office Web Apps

Office Online Server

PT-2020-5267 · Microsoft · 365 Apps+4

CVE-2020-17123

Weakness Enumeration

Related Identifiers

Affected Products

References · 25