Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2018-8378
PUBLISHED
More InfoOfficial Page
Assigner-microsoft
Assigner Org ID-f38d906d-7342-40ea-92c1-6c4a2c6478c8
View Known Exploited Vulnerability (KEV) details
Published At-15 Aug, 2018 | 17:00
Updated At-05 Aug, 2024 | 06:54
Rejected At-
▼CVE Numbering Authority (CNA)

An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Word, Microsoft SharePoint Server, Microsoft Office Word Viewer, Microsoft Excel Viewer, Microsoft SharePoint, Microsoft Office.

Affected Products
Vendor
Microsoft CorporationMicrosoft
Product
Word
Versions
Affected
  • Automation Services on Microsoft SharePoint Server 2010 Service Pack 2
Vendor
Microsoft CorporationMicrosoft
Product
Microsoft SharePoint Server
Versions
Affected
  • 2013 Service Pack 1
Vendor
Microsoft CorporationMicrosoft
Product
Microsoft Office Word Viewer
Versions
Affected
  • Microsoft Office Word Viewer
Vendor
Microsoft CorporationMicrosoft
Product
Microsoft Excel Viewer
Versions
Affected
  • 2007 Service Pack 3
Vendor
Microsoft CorporationMicrosoft
Product
Microsoft SharePoint
Versions
Affected
  • Enterprise Server 2013 Service Pack 1
  • Enterprise Server 2016
Vendor
Microsoft CorporationMicrosoft
Product
Microsoft Office
Versions
Affected
  • 2010 Service Pack 2 (32-bit editions)
  • 2010 Service Pack 2 (64-bit editions)
  • 2013 RT Service Pack 1
  • 2013 Service Pack 1 (32-bit editions)
  • 2013 Service Pack 1 (64-bit editions)
  • 2016 (32-bit edition)
  • 2016 (64-bit edition)
  • 2016 Click-to-Run (C2R) for 32-bit editions
  • 2016 Click-to-Run (C2R) for 64-bit editions
  • Web Apps 2010 Service Pack 2
  • Web Apps 2013 Service Pack 1
Problem Types
TypeCWE IDDescription
textN/AInformation Disclosure
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securityfocus.com/bid/104996
vdb-entry
x_refsource_BID
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8378
x_refsource_CONFIRM
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securityfocus.com/bid/104996
vdb-entry
x_refsource_BID
x_transferred
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8378
x_refsource_CONFIRM
x_transferred
Details not found