Microsoft · Office · CVE-2024-26199
**Name of the Vulnerable Software and Affected Versions**
Microsoft Office (affected versions not specified)
**Description**
The issue is related to the incorrect handling of symbolic links by the Office Performance Monitor executable in Microsoft Office, which can be exploited by creating a specially crafted symbolic link. This can allow an attacker to escalate their privileges. The vulnerability can be exploited by local attackers to gain elevated privileges on affected systems.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.