Vulnerability in Microsoft 365 Apps For Enterprise 32-bit Systems
CVE-2020-1322
An information disclosure vulnerability exists when Microsoft Project reads out of bound memory due to an uninitialized variable, aka 'Microsoft Project Information Disclosure Vulnerability'.
EPSS: 0.251 (96.3th percentile) — read the EPSS interpretation.
Affected products
- Microsoft 365 Apps For Enterprise 32-bit Systems — versions unspecified
- Microsoft 365 Apps For Enterprise 64-bit Systems — versions unspecified
- Microsoft Office — versions 2019 for 32-bit editions, 2019 for 64-bit editions
- Microsoft Project — versions 2013 Service Pack 1 (32-bit editions), 2013 Service Pack 1 (64-bit editions), 2016 (32-bit edition)
References
- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1322 (x_refsource_MISC)