284 matches found
CVE-2026-40420
CVE-2026-40420 : Affected product: Microsoft Office Click-To-Run. Description: Improper access control allows an authorized attacker to elevate privileges locally. The vulnerability is described across multiple sources (NVD, CVE lists) with a high impact score (CVSS 3.1: AV:L/AC:L/PR:L/UI:N/S:C/C...
CVE-2026-40420 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40420 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-35436 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-35436 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-35436
CVE-2026-35436 describes an elevation of privilege vulnerability in Microsoft Office Click-To-Run caused by insufficient granularity of access control. The CVE affects Office Click-To-Run components, enabling an attacker with LOCAL access and LOW privileges, and with NO user interaction, to achie...
CVE-2026-40418 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40418
Technical details (affected product, vulnerable component, version, exploit method) are not publicly available in the provided documents. Monitor for updates from official advisories.
CVE-2026-40418 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40419 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40419 Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
...
CVE-2026-40419
CVE-2026-40419 : A use-after-free vulnerability in Microsoft Office (Click-To-Run) could allow an authorized local attacker to achieve elevation of privilege. The underlying cause is a use-after-free issue in Office components, leading to local privilege escalation. Documented impact is local, wi...
Description of the security update for Word 2016: May 12, 2026 (KB5002858)
Description of the security update for Word 2016: May 12, 2026 KB5002858 Summary This security update resolves a Microsoft Office remote code execution vulnerability and Microsoft Word Information Disclosure Vulnerability. To learn more about the vulnerabilities, see the following security...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
Microsoft Office Click-To-Run Elevation of Privilege Vulnerability
Use after free in Microsoft Office allows an authorized attacker to elevate privileges locally...
PT-2026-40188
Name of the Vulnerable Software and Affected Versions Microsoft Office Click-To-Run affected versions not specified Description Insufficient granularity of access control in the Click-to-Run C2R technology of Microsoft Office and Microsoft 365 Apps for Enterprise allows an authorized attacker to...
PT-2026-40228
Use after free in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...
PT-2026-40230
Improper access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally...