CVE-2026-20952

Name of the Vulnerable Software and Affected Versions Microsoft Office and Microsoft 365 Apps for Enterprise (affected versions not specified)

Description A use-after-free condition exists in Microsoft Office and Microsoft 365 Apps for Enterprise. Exploitation of this issue could allow an attacker to execute arbitrary code. The vulnerability enables remote attackers to execute arbitrary code and impact the system. Viewing a malicious file can lead to compromise.

Recommendations Disable the Preview Pane in Outlook using PowerShell: Set-ItemProperty -Path "HKCU:SoftwareMicrosoftOffice16.0OutlookPreferences" -Name "ShowReadingPane" -Value 0. At the moment, there is no information about a newer version that contains a fix for this vulnerability.