CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-21509

Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.

Exploit prediction scoring system (EPSS) score

CVSS Severity

CVSS v3 Score 7.8

Proposed Action

Microsoft Office contains a security feature bypass vulnerability in which reliance on untrusted inputs in a security decision in Microsoft Office could allow an unauthorized attacker to bypass a security feature locally.

Ransomware Campaign

Unknown

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21509
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2026-21509

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-21509

Products

Pricing

Contact Us