Detections
Analytics
CVE-2017-11882
high
Description
Microsoft Office 2007 Service Pack 3, Microsoft Office 2010 Service Pack 2, Microsoft Office 2013 Service Pack 1, and Microsoft Office 2016 allow an attacker to run arbitrary code in the context of the current user by failing to properly handle objects in memory, aka "Microsoft Office Memory Corruption Vulnerability". This CVE ID is unique from CVE-2017-11884.
References
https://thehackernews.com/2025/05/initial-access-brokers-target-brazil.html
https://thehackernews.com/2025/04/kimsuky-exploits-bluekeep-rdp.html
https://thehackernews.com/2025/03/top-3-ms-office-exploits-hackers-use-in.html
https://thehackernews.com/2025/03/sidewinder-apt-targets-maritime-nuclear.html
https://securelist.com/sidewinder-apt-updates-its-toolset-and-targets-nuclear-sector/115847/
https://securelist.com/vulnerabilities-and-exploits-in-q4-2024/115761/
https://www.databreachtoday.com/blogs/black-basta-leaks-reveal-targeting-planning-escalation-p-3822
https://thehackernews.com/2024/12/thai-officials-targeted-in-yokai.html
https://www.mcafee.com/blogs/other-blogs/mcafee-labs/the-stealthy-stalker-remcos-rat/
https://securelist.com/exploits-and-vulnerabilities-q3-2024/114839/
https://www.infosecurity-magazine.com/news/smokeloader-malware-taiwan/
https://www.fortinet.com/blog/threat-research/sophisticated-attack-targets-taiwan-with-smokeloader
https://thehackernews.com/2024/10/sidewinder-apt-strikes-middle-east-and.html
https://www.darkreading.com/cyberattacks-data-breaches/sidewinder-wide-geographic-net-attack-spree
https://securelist.com/sidewinder-apt/114089/
https://securelist.com/vulnerability-exploit-report-q2-2024/113455/
https://www.securityweek.com/indian-apt-targeting-mediterranean-ports-and-maritime-facilities/
https://thehackernews.com/2024/06/china-linked-valleyrat-malware.html
https://securelist.com/vulnerability-report-q1-2024/112554/
https://therecord.media/cloud-atlas-targets-russian-orgs-war-phishing?&web_view=true
https://www.hhs.gov/sites/default/files/lokibot-malware-analyst-note-tlpclear.pdf
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-215a
https://www.tenable.com/cyber-exposure/tenable-2022-threat-landscape-report
https://www.tenable.com/cyber-exposure/a-look-inside-the-ransomware-ecosystem
https://www.cisa.gov/news-events/cybersecurity-advisories/aa22-117a
https://www.cisa.gov/news-events/cybersecurity-advisories/aa21-209a
https://www.tenable.com/cyber-exposure/2020-threat-landscape-retrospective
https://www.cisa.gov/news-events/cybersecurity-advisories/aa20-133a
Details
Published: 2017-11-15
Updated: 2025-04-20
Named Vulnerability: Equation Editor ExploitKnown Exploited Vulnerability (KEV)
Risk Information
CVSS v2
Base Score: 9.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
Severity: High
CVSS v3
Base Score: 7.8
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: High
EPSS
EPSS: 0.94384
Vulnerability Watch
Tenable Research has classified this CVE under the following Vulnerability Watch classification, which includes active and historical (inactive) classifications. You can learn more about these classifications on our blog.
Vulnerability of Interest