CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-40421

Files or directories accessible to external parties in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 16.8%

CVSS Severity

CVSS v3 Score 4.3

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40421

Products affected by CVE-2026-40421

Microsoft » 365 Apps » Version: N/A

cpe:2.3:a:microsoft:365_apps:-
Microsoft » Office » Version: 2019

cpe:2.3:a:microsoft:office:2019
Microsoft » Office » Version: 2024

cpe:2.3:a:microsoft:office:2024
Microsoft » Office Long Term Servicing Channel » Version: 2021

cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021
Microsoft » Word » Version: 2016

cpe:2.3:a:microsoft:word:2016

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved