Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMicrosoftCVELIST:CVE-2020-1224
HistorySep 11, 2020 - 5:09 p.m.

CVE-2020-1224 Microsoft Excel Information Disclosure Vulnerability

2020-09-1117:09:08
microsoft
www.cve.org
9
cve-2020-1224
microsoft excel
information disclosure

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

AI Score

6.3

Confidence

High

EPSS

0.008

Percentile

81.2%

JSON

CNA Affected

[
  {
    "vendor": "Microsoft",
    "product": "Microsoft SharePoint Enterprise Server 2013 Service Pack 1",
    "cpes": [
      "cpe:2.3:a:microsoft:sharepoint_server:2013:sp1:*:*:enterprise:*:*:*"
    ],
    "platforms": [
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2019",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "19.0.0",
        "lessThan": "https://aka.ms/OfficeSecurityReleases",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2019 for Mac",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2019:*:*:*:*:macos:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office Online Server",
    "cpes": [
      "cpe:2.3:a:microsoft:office_online_server:-:*:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.0.1",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft 365 Apps for Enterprise",
    "cpes": [
      "cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.1",
        "lessThan": "https://aka.ms/OfficeSecurityReleases",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Excel 2016",
    "cpes": [
      "cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:x86:*",
      "cpe:2.3:a:microsoft:excel:2016:*:*:*:*:*:x64:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "16.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office 2016 for Mac",
    "cpes": [
      "cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "16.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Excel 2010 Service Pack 2",
    "cpes": [
      "cpe:2.3:a:microsoft:excel:2010:sp2:*:*:*:*:*:*"
    ],
    "platforms": [
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "13.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Excel 2013 Service Pack 1",
    "cpes": [
      "cpe:2.3:a:microsoft:excel:2013:sp1:*:*:rt:*:*:*",
      "cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:x86:*",
      "cpe:2.3:a:microsoft:excel:2013:sp1:*:*:*:*:x64:*"
    ],
    "platforms": [
      "ARM64-based Systems",
      "32-bit Systems",
      "x64-based Systems"
    ],
    "versions": [
      {
        "version": "15.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Microsoft",
    "product": "Microsoft Office Web Apps 2013 Service Pack 1",
    "cpes": [
      "cpe:2.3:a:microsoft:office_web_apps:2013:sp1:*:*:*:*:*:*"
    ],
    "platforms": [
      "Unknown"
    ],
    "versions": [
      {
        "version": "15.0.0.0",
        "lessThan": "publication",
        "versionType": "custom",
        "status": "affected"
      }
    ]
  }
]

Related

prion 1
mskb 6
cve 1
mscve 1
nvd 1
nessus 8
openvas 5
kaspersky 1
avleonov 1
prion
prion
Information disclosure
2020-09-11 17:15:00
mskb
mskb
Description of the security update for SharePoint Enterprise Server 2013: September 8, 2020
2020-09-08 07:00:00
Description of the security update for Office Web Apps Server 2013: September 8, 2020
2020-09-08 07:00:00
Description of the security update for Office Online Server: September 8, 2020
2020-09-08 07:00:00
cve
cve
CVE-2020-1224
2020-09-11 17:15:19
mscve
mscve
Microsoft Excel Information Disclosure Vulnerability
2020-09-08 07:00:00
nvd
nvd
CVE-2020-1224
2020-09-11 17:15:19
nessus
nessus
Security Updates for Microsoft Excel Products C2R (September 2020)
2022-06-10 00:00:00
Security Updates for Microsoft Office Web Apps (September 2020)
2020-09-08 00:00:00
Security Updates for Microsoft Excel Products (September 2020)
2020-09-08 00:00:00
openvas
openvas
Microsoft Excel 2016 RCE and Information Disclosure Vulnerabilities (KB4484507)
2020-09-09 00:00:00
Microsoft Excel 2010 RCE and Information Disclosure Vulnerabilities (KB4486665)
2020-09-09 00:00:00
Microsoft Excel 2013 RCE and Information Disclosure Vulnerabilities (KB4484526)
2020-09-09 00:00:00
kaspersky
kaspersky
KLA11950 Multiple vulnerabilities in Microsoft Office
2020-09-08 00:00:00
avleonov
avleonov
Microsoft Patch Tuesday September 2020: Zerologon and other exploits, RCEs in SharePoint and Exchange
2020-09-30 23:46:21

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

AI Score

6.3

Confidence

High

EPSS

0.008

Percentile

81.2%

JSON
Related for CVELIST:CVE-2020-1224
prion1mskb6cve1mscve1nvd1nessus8openvas5kaspersky1avleonov1