{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-24T23:27:36.349","vulnerabilities":[{"cve":{"id":"CVE-2019-0953","sourceIdentifier":"secure@microsoft.com","published":"2019-05-16T19:29:04.380","lastModified":"2026-06-17T02:09:17.140","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory, aka 'Microsoft Word Remote Code Execution Vulnerability'."},{"lang":"es","value":"Existe una vulnerabilidad de ejecución remota de código en el software Microsoft Word, cuando no puede manejar correctamente los objetos en la memoria, también se conoce como \"Microsoft Word Remote Code Execution Vulnerability"}],"affected":[{"source":"secure@microsoft.com","affectedData":[{"vendor":"Microsoft","product":"Microsoft Office","versions":[{"version":"2016 for Mac","status":"affected"},{"version":"2019 for 32-bit editions","status":"affected"},{"version":"2019 for 64-bit editions","status":"affected"},{"version":"2019 for Mac","status":"affected"}]},{"vendor":"Microsoft","product":"Microsoft Word","versions":[{"version":"2016 (32-bit edition)","status":"affected"},{"version":"2016 (64-bit edition)","status":"affected"}]},{"vendor":"Microsoft","product":"Office 365 ProPlus","versions":[{"version":"32-bit Systems","status":"affected"},{"version":"64-bit Systems","status":"affected"}]},{"vendor":"Microsoft","product":"Microsoft Office Online Server","versions":[{"version":"unspecified","status":"affected"}]}]}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"REQUIRED","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-noinfo"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2016:*:*:*:*:mac_os_x:*:*","matchCriteriaId":"04435803-F25B-4384-8ADD-001E87F5813A"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2019:*:*:*:*:macos:*:*","matchCriteriaId":"40961B9E-80B6-42E0-A876-58B3CE056E4E"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2019:*:*:*:click-to-run:*:x64:*","matchCriteriaId":"150D4275-452D-42A0-AA24-8582621E9AD2"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office:2019:*:*:*:click-to-run:*:x86:*","matchCriteriaId":"5D222AF7-FC10-449E-B2DF-FA90C80D1493"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office_365_proplus:-:*:*:*:*:*:*:*","matchCriteriaId":"CA035812-F35A-43F1-9A8D-EE02201AA10A"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:office_online_server:-:*:*:*:*:*:*:*","matchCriteriaId":"E98AE986-FA31-4301-8025-E8915BA4AC5E"},{"vulnerable":true,"criteria":"cpe:2.3:a:microsoft:word:2016:*:*:*:*:*:*:*","matchCriteriaId":"4DA042D4-B14E-4DDF-8423-DFB255679EFE"}]}]}],"references":[{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0953","source":"secure@microsoft.com","tags":["Patch","Vendor Advisory"]},{"url":"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0953","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}