Multiple vulnerabilities in Microsoft Office

Описание

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, gain privileges, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.
4. An elevation of privilege vulnerability in Microsoft Office Click-To-Run can be exploited remotely to gain privileges.
5. An information disclosure vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
6. A spoofing vulnerability in Microsoft PowerPoint for Android can be exploited remotely to spoof user interface.
7. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
8. A spoofing vulnerability in Microsoft Office can be exploited remotely to spoof user interface.
9. A tampering vulnerability in Microsoft Outlook for iOS can be exploited remotely to spoof user interface.
10. An information disclosure vulnerability in Microsoft Word can be exploited remotely to obtain sensitive information.
11. A spoofing vulnerability in Microsoft Teams can be exploited remotely to spoof user interface.

Первичный источник обнаружения

• CVE-2026-40364
  CVE-2026-42831
  CVE-2026-40367
  CVE-2026-33112
  CVE-2026-40358
  CVE-2026-40418
  CVE-2026-40420
  CVE-2026-40360
  CVE-2026-40368
  CVE-2026-41102
  CVE-2026-40359
  CVE-2026-40357
  CVE-2026-40419
  CVE-2026-40366
  CVE-2026-40363
  CVE-2026-35439
  CVE-2026-42832
  CVE-2026-42893
  CVE-2026-35436
  CVE-2026-40421
  CVE-2026-35440
  CVE-2026-40361
  CVE-2026-33110
  CVE-2026-32185
  CVE-2026-40362
  CVE-2026-40365
  

Эксплуатация

Связанные продукты

• Microsoft-Office
• Microsoft-Outlook
• Microsoft-Excel
• Microsoft-Word
• Microsoft-SharePoint
• Microsoft-365

Список CVE

• CVE-2026-32185
  high
• CVE-2026-33110
  critical
• CVE-2026-33112
  critical
• CVE-2026-35436
  critical
• CVE-2026-35439
  critical
• CVE-2026-35440
  high
• CVE-2026-40357
  critical
• CVE-2026-40358
  critical
• CVE-2026-40359
  critical
• CVE-2026-40360
  critical
• CVE-2026-40361
  critical
• CVE-2026-40362
  critical
• CVE-2026-40363
  critical
• CVE-2026-40364
  critical
• CVE-2026-40365
  critical
• CVE-2026-40366
  critical
• CVE-2026-40367
  critical
• CVE-2026-40368
  critical
• CVE-2026-40418
  critical
• CVE-2026-40419
  critical
• CVE-2026-40420
  critical
• CVE-2026-40421
  warning
• CVE-2026-41102
  high
• CVE-2026-42831
  critical
• CVE-2026-42832
  critical
• CVE-2026-42893
  high

Список KB

• 5002871
• 5002858
• 5002863
• 5002868
• 5002870
• 5002869
• 5002872
• 5002865
• 5002866

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com