CVE-2026-45459

Published: Jun 9, 2026Modified: Jun 11, 2026

3.3

Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Exploitability: 1.8 / Impact: 1.4

Source: secure@microsoft.com

Description

Protection mechanism failure in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally.

Affected (7)

Products: Microsoft: 365 Apps, Microsoft 365, Office 2021, Office 2024

4 products

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Microsoft 365 Apps	All versions
Microsoft 365 Apps	All versions
Microsoft Microsoft 365	All versions
Microsoft Office 2021	All versions
Microsoft Office 2024	All versions
Microsoft Office 2024	All versions
Microsoft Office 2024	All versions

Related CWEs

Protection Mechanism Failure

The product does not use or incorrectly uses a protection mechanism that provides sufficient defense against directed attacks against the product.

References (1)

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45459

Source: secure@microsoft.com

Vendor Advisory

Timeline

No history available yet.