Vulnerability Details : CVE-2015-1770
Microsoft Office 2013 SP1 and 2013 RT SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Uninitialized Memory Use Vulnerability."
Vulnerability category: Execute code
CVE-2015-1770 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Microsoft Office Uninitialized Memory Use Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
Microsoft Office allows remote attackers to execute arbitrary code via a crafted Office document.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2015-1770
Added on
2022-03-28
Action due date
2022-04-18
Exploit prediction scoring system (EPSS) score for CVE-2015-1770
39.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 97 %
Percentile, the proportion of vulnerabilities that are scored at or less