VIR Vulnerability Intelligence Relay

CVE-2015-6122

critical
Published 2015-12-09 · Modified 2026-05-06
CVSS v3
VIR risk
9.3

Description

Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel for Mac 2011, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.

Application impact
VendorProductVersionsFixed
windows microsoftexcel2007
windows microsoftexcel2010
windows microsoftexcel_for_mac2011
windows microsoftexcel_viewer
windows microsoftoffice_compatibility_pack

References

CWEs

CWE-119

💬 Discuss CVE-2015-6122 on VIR Community →

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.