CVE Catalog

CVE-2026-45456

HighCVSS 8.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.35%

26th percentile - higher than 26% of all known CVEs

Summary

A vulnerability in Microsoft Office related to access of resource using incompatible type ('type confusion') allows an unauthorized attacker to execute code locally.

Risk Assessment

This vulnerability could lead to unauthorized access to the system and execution of malicious code, posing a serious security threat to the organization.

Recommendation

It is recommended to update Microsoft Office to the latest version to mitigate the risk associated with this vulnerability.

Original NVD description (English source)

Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS