CVE-2018-0907

Summary

Microsoft Excel 2007 SP3, Microsoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to-Run and Microsoft Office 2016 for Mac allow a security feature bypass vulnerability due to how macro settings are enforced, aka "Microsoft Office Excel Security Feature Bypass".

Affected Software

VendorProductVersion RangeStatus
Microsoft CorporationMicrosoft ExcelMicrosoft Excel 2007 SP3, Microssoft Excel 2010 SP2, Microsoft Excel 2013 SP1, Microsoft Excel 2016, Microsoft Office 2016 Click-to-Run and Microsoft Office 2016 for Macaffected

Weaknesses

  • Security Feature Bypass

ADP Enrichment

CVE Program Container

Additional References

References