Cyber Resilience

CVE-2018-0798

HighCISA KEVActive ExploitationEUVD Exploited

Published: 10 January 2018

Published
10 January 2018
Modified
28 October 2025
KEV Added
03 November 2021
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.9406 99.9th percentile
Risk Priority 94 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2018-0798 is a high-severity Out-of-bounds Write (CWE-787) vulnerability in Microsoft Office. Its CVSS base score is 8.8 (High).

Operationally, ranked in the top 0.1% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-16 (Memory Protection) and SI-2 (Flaw Remediation).

Deeper analysis

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 contains a memory corruption vulnerability that permits remote code execution. The flaw stems from improper handling of objects in memory and is tracked under CWE-787, with an associated CVSS 3.1 score of 8.8 reflecting network attack vector, low complexity, and no required privileges.

An unauthenticated remote attacker can exploit the issue by delivering a malicious document that triggers Equation Editor processing, resulting in arbitrary code execution with full confidentiality, integrity, and availability impact once user interaction occurs.

The Microsoft Security Response Center advisory at portal.msrc.microsoft.com and related trackers at securityfocus.com and securitytracker.com address the vulnerability, while a 0patch analysis discusses continued support options for the legacy Equation Editor component.

EU & UK References

Vulnerability details

Equation Editor in Microsoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, and Microsoft Office 2016 allows a remote code execution vulnerability due to the way objects are handled in memory, aka "Microsoft Office Memory Corruption Vulnerability".

CWE(s)
KEV Date Added
03 November 2021

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

microsoft
office
2007, 2010, 2013, 2016
microsoft
office compatibility pack
all versions
microsoft
word
2007, 2010, 2013, 2016

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly implements memory protections that block exploitation of the CWE-787 object-handling corruption in Equation Editor.

prevent

Requires prompt application of Microsoft patches that eliminate the Equation Editor memory-corruption flaw before exploitation.

prevent

Enforces least functionality by disabling or removing the legacy Equation Editor component, eliminating the vulnerable attack surface.

References