CVE-2026-55038
7.8
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Summary
Stack-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Microsoft | Microsoft 365 Apps for Enterprise | 16.0.1 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office 2019 | 19.0.0 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office 365 for Mac | 1.0.0 < 16.111.26071215 | affected |
| Microsoft | Microsoft Office LTSC 2021 | 16.0.1 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office LTSC 2024 | 16.0.0 < https://aka.ms/OfficeSecurityReleases | affected |
| Microsoft | Microsoft Office LTSC for Mac 2021 | 16.0.1 < 16.111.26071215 | affected |
| Microsoft | Microsoft Office LTSC for Mac 2024 | 16.0.0 < 16.111.26071215 | affected |
| Microsoft | Microsoft SharePoint Enterprise Server 2016 | 16.0.0 < 16.0.5561.1001 | affected |
| Microsoft | Microsoft SharePoint Server 2019 | 16.0.0 < 16.0.10417.20175 | affected |
| Microsoft | Microsoft SharePoint Server Subscription Edition | 16.0.0 < 16.0.19725.20434 | affected |
| Microsoft | Microsoft Word 2016 | 16.0.1 < 16.0.5561.1000 | affected |
Weaknesses
- CWE-121: CWE-121: Stack-based Buffer Overflow
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.