A remote code execution vulnerability exists in the way that the MSHTML engine inproperly validates input, aka "MSHTML Engine Remote Code Execution Vulnerability." This affects Microsoft Office, Microsoft Office Word Viewer, Internet Explorer 9, Internet Explorer 11, Microsoft Excel Viewer, Internet Explorer 10, Office 365 ProPlus.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| microsoft | internet_explorer | - | - |
| microsoft | excel_viewer | - | - |
| microsoft | office | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
11
Affected Products
7
References
microsoft / internet_explorer
| - |
| microsoft | office | - | - |
| microsoft | office | - | - |
| microsoft | office | - | - |
| microsoft | office | - | - |
| microsoft | office_365_proplus | - | - |
| microsoft | office_word_viewer | - | - |
| microsoft | internet_explorer | - | - |
| microsoft | internet_explorer | - | - |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability
Impact