TheWindowsUpdate.com

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-45486 Microsoft Word Remote Code Execution Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. Continue reading CVE-2026-48562 Microsoft SharePoint Server Spoofing Vulnerability→

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-44817 Microsoft Excel Remote Code Execution Vulnerability→

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally. Continue reading CVE-2026-45474 Microsoft Office Remote Code Execution Vulnerability→

Server-side request forgery (ssrf) in Microsoft Exchange Server allows an authorized attacker to disclose information over a network. Continue reading CVE-2026-45502 Microsoft Exchange Server Information Disclosure Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. Continue reading CVE-2026-45481 Microsoft SharePoint Server Spoofing Vulnerability→

Server-side request forgery (ssrf) in Microsoft Exchange Server allows an authorized attacker to disclose information over a network. Continue reading CVE-2026-45503 Microsoft Exchange Server Information Disclosure Vulnerability→

Improper neutralization of input during web page generation (‘cross-site scripting’) in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network. Continue reading CVE-2026-47640 Microsoft SharePoint Server Spoofing Vulnerability→