ID CVE-2019-0560
Description An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory, aka "Microsoft Office Information Disclosure Vulnerability." This affects Office 365 ProPlus, Microsoft Office.
CVSS
  • Score: 4.3
  • Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
  • Availability: not affected
  • Confidentiality: PARTIAL
  • Integrity: not affected
CWE-ID CWE-200
Last Modified Jan. 12, 2019
Available Solutions No solutions were found

CPE-ID

Application Name/CPE-IDVendorProductVersionList of Vulnerabilities
Microsoft Office 2019 microsoft office 2019 24 Vulnerabilties for Microsoft Office 2019
Microsoft Office_365_proplus microsoft office 365 proplus 26 Vulnerabilties for Microsoft Office_365_proplus
Microsoft Outlook 2010 sp2 microsoft outlook 2010 sp2 20 Vulnerabilties for Microsoft Outlook 2010 sp2
Microsoft Outlook 2013 sp1 microsoft outlook 2013 sp1 21 Vulnerabilties for Microsoft Outlook 2013 sp1
Microsoft Outlook 2013 sp1 rt microsoft outlook 2013 sp1 rt 6 Vulnerabilties for Microsoft Outlook 2013 sp1 rt
Microsoft Outlook 2016 microsoft outlook 2016 23 Vulnerabilties for Microsoft Outlook 2016
Similar vulnerabilities

Pre-Condition

<set operator="and">
  <set operator="or">
      <prop key="application" value="cpe:/a:microsoft:office:2019"/>
      <prop key="application" value="cpe:/a:microsoft:office_365_proplus:-"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2010:sp2"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1:~~rt~~~"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2016"/>
  </set>
    <prop key="program_influence" value="input"/>
    <prop key="range" value="remote"/>
</set>

								

Post-Condition

<set operator="and">
  <set operator="or">
      <prop key="application" value="cpe:/a:microsoft:office:2019"/>
      <prop key="application" value="cpe:/a:microsoft:office_365_proplus:-"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2010:sp2"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2013:sp1:~~rt~~~"/>
      <prop key="application" value="cpe:/a:microsoft:outlook:2016"/>
  </set>
    <prop key="program_influence" value="input"/>
    <prop key="data" value="any"/>
    <prop key="data_influence" value="read"/>
    <prop key="range" value="remote"/>
</set>