CVE-2026-40420 | Microsoft Office 365 Apps/2019/LTSC 2021/LTSC 2024 access control

Inserito da Angelo Barbosa | Mag 12, 2026 | CVE

A vulnerability was found in Microsoft Office 2019/365 Apps/LTSC 2021/LTSC 2024 and classified as critical. This affects an unknown function. Such manipulation leads to improper access controls.

This vulnerability is documented as CVE-2026-40420. The attack needs to be performed locally. There is not any exploit available.

It is best practice to apply a patch to resolve this issue.

CVE-2026-40420 | Microsoft Office 365 Apps/2019/LTSC 2021/LTSC 2024 access control

Post correlati

CVE-2025-57752 | vercel next.js up to 14.2.30/15.4.4 Image Optimization API cache containing sensitive information (GHSA-g5qg-72qw-gw5v)

CVE-2024-21034 | Oracle Complex Maintenance, Repair, and Overhaul up to 12.2.13 LOV Remote Code Execution

CVE-2024-0905 | Fancy Product Designer Plugin up to 6.1.7 on WordPress cross site scripting

CVE-2013-10063 | Netgear SPH200D up to 1.0.4.80 GET Request path traversal (EDB-24441)