CVE Catalog

CVE-2026-44818

HighCVSS 7.0
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.26%

18th percentile - higher than 18% of all known CVEs

Summary

A race condition vulnerability in Microsoft Office Excel due to improper synchronization of shared resources allows an unauthorized attacker to execute code locally.

Risk Assessment

An attacker could exploit this flaw to run malicious code on the victim's machine, potentially leading to system compromise, data theft, or malware installation.

Recommendation

Immediately install the security update provided by Microsoft for Excel. Restrict execution of macros and files from untrusted sources.

Original NVD description (English source)

Concurrent execution using shared resource with improper synchronization ('race condition') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS