CVE-2020-1342

Summary

An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka 'Microsoft Office Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1445.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft SharePoint Enterprise Server2016affected
MicrosoftMicrosoft SharePoint Enterprise Server2013 Service Pack 1affected
MicrosoftMicrosoft SharePoint Server2019affected
MicrosoftMicrosoft SharePoint Server2010 Service Pack 2affected
MicrosoftMicrosoft Office2019 for 32-bit editionsaffected
MicrosoftMicrosoft Office2019 for 64-bit editionsaffected
MicrosoftMicrosoft Office2019 for Macaffected
MicrosoftMicrosoft Office2016 for Macaffected
MicrosoftMicrosoft Office2010 Service Pack 2 (32-bit editions)affected
MicrosoftMicrosoft Office2010 Service Pack 2 (64-bit editions)affected
MicrosoftMicrosoft Office Online Serverunspecifiedaffected
MicrosoftMicrosoft 365 Apps for Enterprise for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft 365 Apps for Enterprise for 64-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Word2016 (32-bit edition)affected
MicrosoftMicrosoft Word2016 (64-bit edition)affected
MicrosoftMicrosoft Word2010 Service Pack 2 (32-bit editions)affected
MicrosoftMicrosoft Word2010 Service Pack 2 (64-bit editions)affected
MicrosoftMicrosoft Word2013 RT Service Pack 1affected
MicrosoftMicrosoft Word2013 Service Pack 1 (32-bit editions)affected
MicrosoftMicrosoft Word2013 Service Pack 1 (64-bit editions)affected
MicrosoftMicrosoft Office Web Apps2010 Service Pack 2affected
MicrosoftMicrosoft Office Web Apps2013 Service Pack 1affected

Weaknesses

  • Information Disclosure

ADP Enrichment

CVE Program Container

Additional References

References