Home
HIGH: 7.8 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C 16.0.1 (custom) before https://aka.ms/OfficeSecurityReleases
affected
16.0.0.0 (custom) before 16.0.5561.1001
affected
19.0.0 (custom) before https://aka.ms/OfficeSecurityReleases
affected
1.0.0 (custom) before 16.111.26071215
affected
16.0.1 (custom) before https://aka.ms/OfficeSecurityReleases
affected
16.0.0 (custom) before https://aka.ms/OfficeSecurityReleases
affected
16.0.1 (custom) before 16.111.26071215
affected
16.0.0 (custom) before 16.111.26071215
affected
16.0.0.0 (custom) before 16.0.10417.20175
affected
Description
Access of resource using incompatible type ('type confusion') in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
Problem types
CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')
Product status
References
msrc.microsoft.com/update-guide/vulnerability/CVE-2026-55024 (Microsoft Excel Remote Code Execution Vulnerability)