Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2020-1446

Published: 14/07/2020 Updated: 21/07/2021
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Microsoft

Vulnerability Summary

A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1447, CVE-2020-1448.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft 365 apps -

microsoft office 2010

microsoft office 2016

microsoft office 2019

microsoft office online server 1.0

microsoft office web apps 2010

microsoft office web apps 2013

microsoft sharepoint enterprise server 2013

microsoft sharepoint enterprise server 2016

microsoft sharepoint server 2010

microsoft sharepoint server 2019

microsoft word 2010

microsoft word 2013

microsoft word 2016

microsoft word rt 2013

Github Repositories

https://github.com/CraigDonkin/Microsoft-CVE-Lookup

This script looks up CVE numbers you receive from nessus/qualys output and checks them against the Microsoft API to retrieve information such as if there has been exploitation or public details.

Microsoft-CVE-Lookup This script looks up CVE numbers you receive from nessus/qualys output and checks them against the Microsoft API to retrieve information such as if there has been exploitation or public details Help Retrieve information for a CVE from Microsoft API cve_number CVE number to retrieve information for, example CVE-2024-123

References

NVD-CWE-noinfohttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1446https://nvd.nist.govhttps://github.com/CraigDonkin/Microsoft-CVE-Lookup
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654CVE-2023-49606encryptionNULL pointer dereferenceCVE-2024-4439CVE-2024-4649race conditionCVE-2024-27202CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook