CVE-2012-1854 — Microsoft Visual Basic for Applications Insecure Library Loading Vulnerability

Description

Microsoft Visual Basic for Applications (VBA) contains an insecure library loading vulnerability that could allow for remote code execution.

No package mapping is available — consult the references below for vendor-specific guidance.

Yes — CVE-2012-1854 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

No package mapping in OSV.