Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally.
Project Subscriptions
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Tue, 14 Jul 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 14 Jul 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally. | |
| Title | Microsoft Office Information Disclosure Vulnerability | |
| First Time appeared |
Microsoft
Microsoft 365 Apps Microsoft office 2016 Microsoft office 2019 Microsoft office 2021 Microsoft office 2024 Microsoft office 365 Microsoft office Macos 2021 Microsoft office Macos 2024 |
|
| Weaknesses | CWE-125 | |
| CPEs | cpe:2.3:a:microsoft:365_apps:*:*:*:*:enterprise:*:*:* cpe:2.3:a:microsoft:office_2016:*:*:*:*:*:*:x86:* cpe:2.3:a:microsoft:office_2019:*:*:*:*:*:*:*:* cpe:2.3:a:microsoft:office_2021:*:*:*:*:long_term_servicing_channel:*:*:* cpe:2.3:a:microsoft:office_2024:*:*:*:*:long_term_servicing_channel:*:*:* cpe:2.3:a:microsoft:office_365:*:*:*:*:*:macos:*:* cpe:2.3:a:microsoft:office_macos_2021:*:*:*:*:*:long_term_servicing_channel:*:* cpe:2.3:a:microsoft:office_macos_2024:*:*:*:*:*:long_term_servicing_channel:*:* |
|
| Vendors & Products |
Microsoft
Microsoft 365 Apps Microsoft office 2016 Microsoft office 2019 Microsoft office 2021 Microsoft office 2024 Microsoft office 365 Microsoft office Macos 2021 Microsoft office Macos 2024 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2026-07-14T19:41:34.162Z
Reserved: 2026-06-19T13:54:04.006Z
Link: CVE-2026-56195
Updated: 2026-07-14T18:55:58.090Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses