CVE-2017-0199: Microsoft Office and WordPad Remote Code Execution

Microsoft Office and WordPad Remote Code Execution Vulnerability. Microsoft Office and WordPad contain an unspecified vulnerability due to the way the applications parse specially crafted files. Successful exploitation allows for remote code execution.

• CISA KEV-listed (remediation due 2022-05-03)
• used in ransomware campaigns
• EPSS 94.3% (99.9% percentile)

Related briefings

• Leviathan: Chinese Espionage Actor Targets Maritime, Naval Defense, and Military Research with Orz, NanHaiShu, and Cobalt Strike 2026-02-16

Browse the CVE database

Read the full analysis on IntelFusions