CVE-2017-11826
Microsoft Office Remote Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
81.5%
p100
KEV
YES
Mar 3, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
81.5%EPSS · 30 days81.6%
2026-06-302026-07-16
Product
Microsoft / Office
Vulnerability
Microsoft Office Remote Code Execution Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 24, 2022
Known ransomware use
No
Summary description
A remote code execution vulnerability exists in Microsoft Office software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-11826
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-11882—100.0%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2023-23397—99.9%
KEV—80Microsoft Office Outlook Privilege Escalation Vulnerability—CVE-2018-0798—99.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2015-1641—99.9%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2018-0802—99.8%
KEV—80Microsoft Office Memory Corruption Vulnerability—CVE-2010-3333—99.8%
KEV—80Microsoft Office Stack-based Buffer Overflow Vulnerability—