Description

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-0850, CVE-2020-0851, CVE-2020-0852, CVE-2020-0855.

Remediation

References

CVE-2020-0892

Related Vulnerabilities

Dot CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2016-8906)

WordPress Plugin Social Media Widget by Acurax Cross-Site Scripting (2.2)

XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-29209)

Joomla URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2015-5608)

Moodle Improper Input Validation Vulnerability (CVE-2018-1137)

Severity

High

Classification

CVE-2020-0892 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities