CVE-2020-1449

Summary

A remote code execution vulnerability exists in Microsoft Project software when the software fails to check the source markup of a file, aka 'Microsoft Project Remote Code Execution Vulnerability'.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Office2019 for 32-bit editionsaffected
MicrosoftMicrosoft Office2019 for 64-bit editionsaffected
MicrosoftMicrosoft 365 Apps for Enterprise for 32-bit Systemsunspecifiedaffected
MicrosoftMicrosoft 365 Apps for Enterprise for 64-bit Systemsunspecifiedaffected
MicrosoftMicrosoft Project2013 Service Pack 1 (32-bit editions)affected
MicrosoftMicrosoft Project2013 Service Pack 1 (64-bit editions)affected
MicrosoftMicrosoft Project2016 (32-bit edition)affected
MicrosoftMicrosoft Project2016 (64-bit edition)affected
MicrosoftMicrosoft Project2010 Service Pack 2 (32-bit editions)affected
MicrosoftMicrosoft Project2010 Service Pack 2 (64-bit editions)affected

Weaknesses

  • Remote Code Execution

ADP Enrichment

CVE Program Container

Additional References

References