VulnWire
Critical - CVSS 9.8
Known Ransomware Use
Added 11/3/2021

Microsoft Office Memory Corruption Vulnerability

CVE-2017-11882
Action was due by: 5/3/2022
CISA Known Exploited Vulnerability

This vulnerability is part of CISA's Known Exploited Vulnerabilities (KEV) catalog, indicating active exploitation in the wild. It has been observed in ransomware campaigns.

Overview

Microsoft Office contains a memory corruption vulnerability that allows remote code execution in the context of the current user.

Vendor

Microsoft

Product

Office

Category

Operating System
Technical Details

Affected Versions

See vendor advisory

Technical Description

This vulnerability was identified in Office by Microsoft. Microsoft Office contains a memory corruption vulnerability that allows remote code execution in the context of the current user.

Exploitability

High - Known ransomware exploitation

Impact

Complete system compromise possible

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2017-11882

Required Action (CISA)

Apply updates per vendor instructions.

Due Date: 5/3/2022

References
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11882
https://nvd.nist.gov/vuln/detail/CVE-2017-11882
https://www.cisa.gov/known-exploited-vulnerabilities-catalog