Vulnerability Details CVE-2026-42832
Improper access control in Microsoft Office allows an unauthorized attacker to perform spoofing locally.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 14.6%
CVSS Severity
CVSS v3 Score 7.7
Products affected by CVE-2026-42832
-
cpe:2.3:a:microsoft:excel:-
-
cpe:2.3:a:microsoft:office:2024
-
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021
-
cpe:2.3:a:microsoft:word:-
-
cpe:2.3:a:microsoft:word:16.0.10228.20049
-
cpe:2.3:a:microsoft:word:16.0.10325.20043
-
cpe:2.3:a:microsoft:word:16.0.10730.20043
-
cpe:2.3:a:microsoft:word:16.0.10827.20078
-
cpe:2.3:a:microsoft:word:16.0.11001.20049
-
cpe:2.3:a:microsoft:word:16.0.11001.20074
-
cpe:2.3:a:microsoft:word:16.0.11029.20056
-
cpe:2.3:a:microsoft:word:16.0.11126.20063
-
cpe:2.3:a:microsoft:word:16.0.11231.20088
-
cpe:2.3:a:microsoft:word:16.0.11328.20080
-
cpe:2.3:a:microsoft:word:16.0.11425.20132
-
cpe:2.3:a:microsoft:word:16.0.11601.20074
-
cpe:2.3:a:microsoft:word:16.0.11629.20124
-
cpe:2.3:a:microsoft:word:16.0.11727.20104
-
cpe:2.3:a:microsoft:word:16.0.11901.20110
-
cpe:2.3:a:microsoft:word:16.0.11929.20198
-
cpe:2.3:a:microsoft:word:16.0.12026.20174
-
cpe:2.3:a:microsoft:word:16.0.12130.20208
-
cpe:2.3:a:microsoft:word:16.0.12228.20260
-
cpe:2.3:a:microsoft:word:16.0.12325.20174
-
cpe:2.3:a:microsoft:word:16.0.12430.20120
-
cpe:2.3:a:microsoft:word:16.0.12527.20090
-
cpe:2.3:a:microsoft:word:16.0.12624.20254
-
cpe:2.3:a:microsoft:word:16.0.12730.20182
-
cpe:2.3:a:microsoft:word:16.0.12730.20214
-
cpe:2.3:a:microsoft:word:16.0.12827.20140
-
cpe:2.3:a:microsoft:word:16.0.8730.2050
-
cpe:2.3:a:microsoft:word:16.0.8827.2054
-
cpe:2.3:a:microsoft:word:16.0.9001.2077
-
cpe:2.3:a:microsoft:word:16.0.9029.2068
-
cpe:2.3:a:microsoft:word:16.0.9126.2069
-
cpe:2.3:a:microsoft:word:16.0.9226.2077
-
cpe:2.3:a:microsoft:word:16.0.9330.2060
-
cpe:2.3:a:microsoft:word:16.0.9330.2080