Vulnerability Details CVE-2026-42831
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.4%
CVSS Severity
CVSS v3 Score 7.8
Products affected by CVE-2026-42831
-
cpe:2.3:a:microsoft:365_copilot:-
-
cpe:2.3:a:microsoft:365_copilot:16.0.16026.20172
-
cpe:2.3:a:microsoft:365_copilot:16.0.16130.20156
-
cpe:2.3:a:microsoft:365_copilot:16.0.16827.20138
-
cpe:2.3:a:microsoft:365_copilot:16.0.18730.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.18827.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.18925.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.19127.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.19220.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.19328.20000
-
cpe:2.3:a:microsoft:365_copilot:16.0.19426.20044
-
cpe:2.3:a:microsoft:365_copilot:16.0.19822.20000
-
cpe:2.3:a:microsoft:office:2024
-
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021