CVE Catalog

CVE-2026-45463

HighCVSS 8.4
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.34%

26th percentile - higher than 26% of all known CVEs

Summary

An integer underflow (wrap or wraparound) vulnerability in Microsoft Office allows an unauthorized attacker to execute code locally.

Risk Assessment

An attacker could exploit this vulnerability to run malicious code on the victim's machine, potentially leading to system compromise, data theft, or malware installation.

Recommendation

It is recommended to immediately apply the security update provided by Microsoft for Office and restrict user privileges to the minimum necessary for their work.

Original NVD description (English source)

Integer underflow (wrap or wraparound) in Microsoft Office allows an unauthorized attacker to execute code locally.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS