Microsoft Word Remote Code Execution Vulnerability
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HMicrosoft Office
APPMicrosoft2019Microsoft Office Long Term Servicing Channel
APPMicrosoft2021Microsoft Office Online Server
APPMicrosoft2016Microsoft Office Web Apps
APPMicrosoft2013Microsoft Sharepoint Enterprise Server
APPMicrosoft20132016Microsoft Sharepoint Foundation
APPMicrosoft2013Microsoft SharePoint Server
APPMicrosoft2019Microsoft Word
APPMicrosoft2013
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
RCE
Related vulnerabilities
CVE-2026-20963CRITICAL9.8⚠ KEVPL ✓ten sam produkt
RCE przez deserializację niezaufanych danych w Microsoft SharePoint Server
CVE-2025-53770CRITICAL9.8⚠ KEVPL ✓ten sam produkt
RCE przez deserialization w Microsoft SharePoint Server (on-premises)
CVE-2024-21413CRITICAL9.8⚠ KEVPL ✓ten sam produkt
RCE w Microsoft Outlook — podatność MonikerLink (CVE-2024-21413)
CVE-2023-29357CRITICAL9.8⚠ KEVten sam produkt
Microsoft SharePoint Server Elevation of Privilege Vulnerability
CVE-2023-23397CRITICAL9.8⚠ KEVten sam produkt
Microsoft Outlook Elevation of Privilege Vulnerability