Описание
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
Затрагиваемое ПО
Microsoft 365 appsMicrosoft Microsoft 365Microsoft Office 2016Microsoft Office 2019Microsoft Office 2021Microsoft Office 2024Microsoft Sharepoint server
CVSS
| Балл | 8.4 — высокая |
| Вектор | CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Источники
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45456