CVE-2018-8427

Summary

An information disclosure vulnerability exists in the way that Microsoft Graphics Components handle objects in memory, aka "Microsoft Graphics Components Information Disclosure Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Office 365 ProPlus, Windows Server 2008, Microsoft PowerPoint Viewer, Microsoft Excel Viewer.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Office2016 for Macaffected
MicrosoftMicrosoft Office2019 for 32-bit editionsaffected
MicrosoftMicrosoft Office2019 for 64-bit editionsaffected
MicrosoftMicrosoft OfficeCompatibility Pack Service Pack 3affected
MicrosoftMicrosoft Office Word ViewerMicrosoft Office Word Vieweraffected
MicrosoftWindows Server 200832-bit Systems Service Pack 2affected
MicrosoftWindows Server 200832-bit Systems Service Pack 2 (Server Core installation)affected
MicrosoftWindows Server 2008Itanium-Based Systems Service Pack 2affected
MicrosoftWindows Server 2008x64-based Systems Service Pack 2affected
MicrosoftWindows Server 2008x64-based Systems Service Pack 2 (Server Core installation)affected
MicrosoftMicrosoft PowerPoint Viewer2007affected
MicrosoftOffice365 ProPlus for 32-bit Systemsaffected
MicrosoftOffice365 ProPlus for 64-bit Systemsaffected
MicrosoftMicrosoft Excel Viewer2007 Service Pack 3affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References