CVE-2018-0802 Microsoft CVE debrief

Who should care

Security and IT teams responsible for Microsoft Office patching, endpoint management, vulnerability management, and risk reduction on Windows desktops and laptops running Office.

Technical summary

The available evidence identifies CVE-2018-0802 as a Microsoft Office memory corruption vulnerability that CISA has placed in its Known Exploited Vulnerabilities catalog. The corpus does not provide technical exploitation details, affected components, or version ranges, so the safest interpretation is that Office installations should be updated according to vendor instructions and inventory should be checked for exposure.

Defensive priority

High. CISA’s KEV catalog indicates known exploitation, so this vulnerability should be prioritized above routine patch queues and remediated according to vendor guidance as soon as possible.

Recommended defensive actions

• Apply Microsoft updates per vendor instructions.
• Verify Microsoft Office patch deployment across all managed endpoints.
• Inventory systems with Microsoft Office installed and confirm they are covered by current remediation.
• Track CISA KEV and Microsoft security guidance for any version-specific remediation details.
• Review vulnerability management SLAs to ensure KEV-listed items are handled as urgent remediation targets.

Evidence notes

Source evidence is limited to the CISA KEV entry and official record links. The corpus confirms: vendor Microsoft, product Office, vulnerability name 'Microsoft Office Memory Corruption Vulnerability,' date added 2021-11-03, due date 2022-05-03, and knownRansomwareCampaignUse 'Unknown.' No exploit code, affected version list, or attacker attribution is included in the supplied materials.

Official resources