CVE-2026-44821NVD

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally.

Severity Level

MEDIUM(5.5)

Published Date

Jun 9, 2026

Last Modified

Jun 11, 2026

Exploitation Status

????

EPSS Score (30-Day)

0.06%Probability

Root Weakness (CWE)

The software reads data past the end, or before the beginning, of the intended buffer.

CVSS v3.1 Base Metrics

Attack VectorLocal

Attack ComplexityLow

Privileges RequiredNone

User InteractionRequired

ScopeUnchanged

ConfidentialityHigh

IntegrityNone

AvailabilityNone