275 matches found
CVE-2026-41101
Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally...
CVE-2026-40366
Access of resource using incompatible type 'type confusion' in Microsoft Office Word allows an unauthorized attacker to execute code locally...
EUVD-2026-29649
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally...
EUVD-2026-29648
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
PT-2026-40191
Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally...
PT-2026-40240
Improper access control in Microsoft Office Word allows an authorized attacker to perform spoofing locally...
PT-2026-40199
Access of resource using incompatible type 'type confusion' in Microsoft Office Word allows an unauthorized attacker to execute code locally...
EUVD-2026-22639
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally...
CVE-2026-33115
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2026-33114
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2026-33822
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally...
PT-2026-32882
CVE-2026-33822 Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally. https://t.co/mTLmvYs9z4...
PT-2026-32878
Name of the Vulnerable Software and Affected Versions Microsoft 365 Apps for Enterprise versions 16.0.1 through 16.0.1 Description Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally by tricking a user into opening a malicious document...
PT-2026-32723
CVE-2026-23657 | Microsoft 365 Apps for Enterprise | Remote Code Execution Description A use-after-free vulnerability in Microsoft Office Word in Microsoft 365 Apps for Enterprise allows an unauth attacker to achieve local RCE by tricking a user into opening a malicious document that triggers...
CVE-2026-21514
Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally...
CVE-2026-21514
Reliance on untrusted inputs in a security decision in Microsoft Office Word allows an unauthorized attacker to bypass a security feature locally...
PT-2026-7400
Name of the Vulnerable Software and Affected Versions Microsoft Word versions prior to February 2026 Patch Tuesday Description A critical security flaw in Microsoft Word allows an attacker to bypass security features locally by exploiting reliance on untrusted inputs during security decisions. Th...
CVE-2026-20944
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2026-20948
Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally...
PT-2026-2745
Name of the Vulnerable Software and Affected Versions Microsoft Office Word affected versions not specified Description An out-of-bounds read issue exists in Microsoft Office Word, potentially allowing an unauthorized attacker to execute code locally. Recommendations At the moment, there is no...