V
Scaner-VS
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
CVE-2016-7193
MSR
High KEVConfirmedExploit available

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatib…

CVSS
7.8
High
EPSS
0.58
p98
Published
2016-01-01
Updated
2022-03-03
Description

Microsoft Word 2007 SP2, Office 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Automation Services on SharePoint Server 2013 SP1, Office Web Apps 2010 SP2, Office Web Apps Server 2013 SP1, and Office Online Server allow remote attackers to execute arbitrary code via a crafted RTF document, aka "Microsoft Office Memory Corruption Vulnerability."

Tags · CWE
KEV
CWE-119
CAPEC-8
CAPEC-9
CAPEC-10
CAPEC-14
CAPEC-24
CAPEC-42
CAPEC-44
CAPEC-45
CAPEC-46
CAPEC-47
CAPEC-100
CAPEC-123
Affected products
OfficeOffice_compatibility_packWordWord_viewer
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Timeline
2016-01-01
Published
2022-03-03
Added to KEV
2022-03-03
Updated
CVSS 3.1 breakdown
Attack Vector
AV: L
Local (L)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: R
Required (R)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: H
High (H)
Integrity Impact
I: H
High (H)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.577 · p98
Known exploited (KEV)
Yes
Known exploits — Сканер-ВС
CVE-2016-7193
cisa · https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Enterprise
Affected products
ProductVendorStatus
office*Exploited
office_compatibility_pack*Exploited
word*Exploited
word_viewer*Exploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
WindowsMicrosoftExploited
Showing first 20 of 25
Source databases
MSR
CVE
Related vulnerabilities