CVE-2026-26150 Microsoft Purview eDiscovery Elevation of Privilege Vulnerability

...

CVE-2026-26150

The CVE-2026-26150 entry corresponds to a Server-Side Request Forgery (SSRF) vulnerability in Microsoft Purview eDiscovery that could allow an unauthorized attacker to elevate privileges over a network. The Red Hat, EUVD ENISA, CIRCL, NVD, and MSRC/PTSecurity references corroborate the same descr...

CVE-2025-64676 Microsoft Purview eDiscovery Remote Code Execution Vulnerability

...

CVE-2025-64676

CVE-2025-64676 concerns Microsoft Purview eDiscovery Remote Code Execution. A flaw in Purview (via the // path) allows an authorized attacker to execute code over the network. Affected software is Microsoft Purview/eDiscovery; the root cause is a path-related/code-execution flaw that can enable t...

KLA90826 Multiple vulnerabilities in Microsoft Office

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to perform cross-site scripting attack, spoof user interface, gain privileges, execute arbitrary code. Below is a complete list of vulnerabilities: 1. A spoofing vulnerability in Office...