PT-2026-24335 · Microsoft · Office+1

Gábor Selján

Published

2026-03-10

Updated

2026-03-16

CVE-2026-26134

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified)

Description An integer overflow or wraparound exists in Microsoft Office, potentially allowing an authorized attacker to elevate privileges locally. The issue involves an integer overflow, which can lead to unexpected behavior and potentially allow an attacker to gain higher-level access within the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use After Free

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416CWE-190

Related Identifiers

BDU:2026-02866

CVE-2026-26134

Affected Products

Office

Office For Android

PT-2026-24335 · Microsoft · Office+1

CVE-2026-26134

Weakness Enumeration

Related Identifiers

Affected Products

References · 5