Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2026-21259

Опубликовано: 10 фев. 2026
Источник: msrc
CVSS3: 7.8
EPSS Низкий

Описание

Microsoft Excel Elevation of Privilege Vulnerability

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.

FAQ

What privileges could be gained by an attacker who successfully exploited the vulnerability?

An attacker who successfully exploited this vulnerability could gain administrator privileges.

Is the Preview Pane an attack vector for this vulnerability?

No, the Preview Pane is not an attack vector.

Обновления

ПродуктСтатьяОбновление
Microsoft Excel 2016 (32-bit edition)
5002837
Security Update
Microsoft Excel 2016 (64-bit edition)
5002837
Security Update
Office Online Server
5002835
Security Update
Microsoft Office 2019 for 32-bit editions
Click to Run
-
Microsoft Office 2019 for 64-bit editions
Click to Run
-
Microsoft 365 Apps for Enterprise for 32-bit Systems
Click to Run
-
Microsoft 365 Apps for Enterprise for 64-bit Systems
Click to Run
-
Microsoft Office LTSC 2021 for 64-bit editions
Click to Run
-
Microsoft Office LTSC 2021 for 32-bit editions
Click to Run
-
Microsoft Office LTSC 2024 for 32-bit editions
Click to Run
-

Показывать по

Возможность эксплуатации

Publicly Disclosed

No

Exploited

No

Latest Software Release

Exploitation Less Likely

EPSS

Процентиль: 7%
0.00027
Низкий

7.8 High

CVSS3

Связанные уязвимости

nvd логотип

CVE-2026-21259

CVSS3: 7.8
nvd
около 2 месяцев назад

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.

github логотип

GHSA-pw6x-8hxj-hv8c

CVSS3: 7.8
github
около 2 месяцев назад

Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to elevate privileges locally.

fstec логотип

BDU:2026-01782

CVSS3: 7.8
fstec
около 2 месяцев назад

Уязвимость пакетов программ Microsoft Office, Excel и 365 Apps for Enterprise, связанная с выходом операции за границы буфера в памяти, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 7%
0.00027
Низкий

7.8 High

CVSS3