You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
excel rce
About this tag
The tag 'excel rce' covers discussions about Remote Code Execution vulnerabilities in Microsoft Excel, focusing on the apparent contradiction between CVE titles that say 'Remote Code Execution' and CVSS Attack Vector values that are marked as Local (AV:L). Posts explain that this split is intentional: the CVE title describes the attacker's origin and impact, while the CVSS vector documents where the vulnerable code executes at the moment of exploitation. Examples include CVE-2026-20957 and CVE-2025-62556, with diagrams illustrating remote delivery to a local workstation leading to RCE and server-side parsing. The content clarifies that the discrepancy is not a mistake but a complementary view of the same flaw.
Microsoft’s CVE title and the CVSS Attack Vector are answering two different — but complementary — questions: the CVE headline “Remote Code Execution” signals attacker origin and impact, while the CVSS Attack Vector value AV:L (Local) documents where the vulnerable code is executed at the moment...
Microsoft’s advisory for CVE-2025-62556 labels the issue as a Microsoft Excel Remote Code Execution vulnerability, yet the published CVSS vector shows an Attack Vector of Local (AV:L) — a seemingly contradictory pairing that, on closer inspection, reflects two different ways of answering two...