Home

Description

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

PUBLISHED Reserved 2026-04-11 | Published 2026-05-12 | Updated 2026-05-20 | Assigner microsoft




HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Problem types

CWE-822: Untrusted Pointer Dereference

Product status

16.0.1 (custom) before https://aka.ms/OfficeSecurityReleases
affected

19.0.0 (custom) before https://aka.ms/OfficeSecurityReleases
affected

16.0.1 (custom) before https://aka.ms/OfficeSecurityReleases
affected

16.0.0 (custom) before https://aka.ms/OfficeSecurityReleases
affected

16.0.1 (custom) before 16.109.26051019
affected

16.0.0 (custom) before 16.109.26051019
affected

16.0.0 (custom) before 16.0.5552.1002
affected

16.0.0 (custom) before 16.0.10417.20128
affected

16.0.0 (custom) before 16.0.19725.20280
affected

16.0.1 (custom) before 16.0.5552.1000
affected

References

msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40367 (Microsoft Word Remote Code Execution Vulnerability) vendor-advisory patch

cve.org (CVE-2026-40367)

nvd.nist.gov (CVE-2026-40367)

Download JSON