Excel

excel

Vendor: Microsoft • 405 CVEs

CVEs (405)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-42832 1Microsoft 4Excel OfficeOffice Long Term Servicing Channel+1 more May 19, 2026 May 12, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.
CVE-2026-40362 1Microsoft 5365 Apps ExcelOffice+2 more Jun 1, 2026 May 12, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-40360 1Microsoft 5365 Apps ExcelOffice+2 more May 19, 2026 May 12, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
CVE-2026-40359 1Microsoft 5365 Apps ExcelOffice+2 more May 19, 2026 May 12, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-32199 1Microsoft 5365 Apps ExcelOffice+2 more Apr 28, 2026 Apr 14, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-32198 1Microsoft 5365 Apps ExcelOffice+2 more Apr 28, 2026 Apr 14, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-32197 1Microsoft 5365 Apps ExcelOffice+2 more Apr 28, 2026 Apr 14, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-32189 1Microsoft 5365 Apps ExcelOffice+2 more Apr 29, 2026 Apr 14, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-32188 1Microsoft 5365 Apps ExcelOffice+2 more Apr 29, 2026 Apr 14, 2026 N/A· v4 7.1 HIGH· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
CVE-2026-26133 1Microsoft 10365 Copilot EdgeExcel+7 more Apr 9, 2026 Mar 16, 2026 N/A· v4 7.1 HIGH· v3 N/A· v2 AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network.
CVE-2026-26112 1Microsoft 5365 Apps ExcelOffice+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Untrusted pointer dereference in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26109 1Microsoft 5365 Apps ExcelOffice+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26108 1Microsoft 5365 Apps ExcelOffice+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-26107 1Microsoft 5365 Apps ExcelOffice+2 more Mar 13, 2026 Mar 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-21261 1Microsoft 5365 Apps ExcelOffice+2 more Feb 11, 2026 Feb 10, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
CVE-2026-21259 1Microsoft 5365 Apps ExcelOffice+2 more Feb 11, 2026 Feb 10, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.
CVE-2026-21258 1Microsoft 5365 Apps ExcelOffice+2 more Feb 11, 2026 Feb 10, 2026 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Improper input validation in Microsoft Office Excel allows an unauthorized attacker to disclose information locally.
CVE-2026-20957 1Microsoft 5365 Apps ExcelOffice+2 more Jan 14, 2026 Jan 13, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20950 1Microsoft 5365 Apps ExcelOffice+2 more Jan 14, 2026 Jan 13, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVE-2026-20946 1Microsoft 4365 Apps ExcelOffice+1 more Jan 16, 2026 Jan 13, 2026 N/A· v4 7.8 HIGH· v3 N/A· v2 Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

12 3 4 5...21 Next