Product

Office Click-to-Run

3 briefs RSS

CVE-2026-40420 - Microsoft Office Click-To-Run Improper Access Control Vulnerability

CVE-2026-40420 is an improper access control vulnerability in Microsoft Office Click-To-Run allowing an authorized attacker to elevate privileges locally.

Office Click-To-Run privilege-escalation office windows

2r 1t 1c 39m ago

high advisory

CVE-2026-40418: Microsoft Office Click-To-Run Use-After-Free Vulnerability

2 rules 1 TTP 1 CVE

CVE-2026-40418 is a use-after-free vulnerability in Microsoft Office Click-To-Run that allows an authorized attacker to elevate privileges locally.

Office Click-To-Run cve privilege-escalation windows use-after-free

2r 1t 1c 40m ago

high advisory

CVE-2026-35436: Microsoft Office Click-To-Run Privilege Escalation

2 rules 1 TTP 1 CVE

CVE-2026-35436 is a privilege escalation vulnerability in Microsoft Office Click-To-Run due to insufficient granularity of access control, allowing an authorized attacker to elevate privileges locally.

Office Click-To-Run privilege-escalation cve

2r 1t 1c 57m ago