Kaspersky ID:
KLA91093
Дата обнаружения:
09/06/2026
Обновлено:
23/06/2026

Описание

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to bypass security restrictions, execute arbitrary code, gain privileges, obtain sensitive information, spoof user interface.

Below is a complete list of vulnerabilities:

  1. A spoofing vulnerability in Microsoft SharePoint Server can be exploited remotely to spoof user interface.
  2. An information disclosure vulnerability in Microsoft Teams for Android can be exploited remotely to obtain sensitive information.
  3. A remote code execution vulnerability in Windows Graphics Component can be exploited remotely to execute arbitrary code.
  4. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
  5. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
  6. An information disclosure vulnerability in Microsoft Office can be exploited remotely to obtain sensitive information.
  7. An information disclosure vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
  8. A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely to execute arbitrary code.
  9. A remote code execution vulnerability in Microsoft Outlook and Word can be exploited remotely to execute arbitrary code.
  10. A remote code execution vulnerability in Microsoft Word can be exploited remotely to execute arbitrary code.
  11. A security feature bypass vulnerability in Microsoft Excel can be exploited remotely to bypass security restrictions.
  12. An information disclosure vulnerability in Microsoft Word can be exploited remotely to obtain sensitive information.
  13. A spoofing vulnerability in Microsoft Office Project Server can be exploited remotely to spoof user interface.
  14. An elevation of privilege vulnerability in Microsoft SharePoint can be exploited remotely to gain privileges.
  15. A spoofing vulnerability in Office for Android can be exploited remotely to spoof user interface.
  16. An elevation of privilege vulnerability in Microsoft Office Click-To-Run can be exploited remotely to gain privileges.
  17. A remote code execution vulnerability in Microsoft SharePoint Server can be exploited remotely to execute arbitrary code.

Первичный источник обнаружения

Эксплуатация

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2026-33113
    high
  • CVE-2026-42835
    critical
  • CVE-2026-44803
    critical
  • CVE-2026-44812
    critical
  • CVE-2026-44817
    critical
  • CVE-2026-44818
    high
  • CVE-2026-44819
    critical
  • CVE-2026-44820
    critical
  • CVE-2026-44821
    high
  • CVE-2026-44822
    critical
  • CVE-2026-44823
    critical
  • CVE-2026-44824
    critical
  • CVE-2026-45453
    high
  • CVE-2026-45454
    critical
  • CVE-2026-45455
    warning
  • CVE-2026-45456
    critical
  • CVE-2026-45457
    critical
  • CVE-2026-45458
    critical
  • CVE-2026-45459
    warning
  • CVE-2026-45460
    warning
  • CVE-2026-45461
    critical
  • CVE-2026-45462
    high
  • CVE-2026-45463
    critical
  • CVE-2026-45464
    high
  • CVE-2026-45465
    high
  • CVE-2026-45466
    warning
  • CVE-2026-45467
    high
  • CVE-2026-45468
    high
  • CVE-2026-45469
    critical
  • CVE-2026-45471
    critical
  • CVE-2026-45472
    critical
  • CVE-2026-45474
    critical
  • CVE-2026-45475
    critical
  • CVE-2026-45479
    high
  • CVE-2026-45481
    high
  • CVE-2026-45483
    high
  • CVE-2026-45484
    critical
  • CVE-2026-45485
    warning
  • CVE-2026-45486
    critical
  • CVE-2026-45643
    critical
  • CVE-2026-45645
    critical
  • CVE-2026-45649
    high
  • CVE-2026-47293
    high
  • CVE-2026-47298
    critical
  • CVE-2026-47634
    high
  • CVE-2026-47635
    critical
  • CVE-2026-47636
    high
  • CVE-2026-47637
    high
  • CVE-2026-47638
    high
  • CVE-2026-47639
    high
  • CVE-2026-47640
    high
  • CVE-2026-47641
    high
  • CVE-2026-48560
    high
  • CVE-2026-48562
    warning

Список KB

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Do you want to save your changes?
Your message has been sent successfully.