Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
7.8 HIGH
CVE-2026-45486 — Microsoft Word Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
3.3 LOW
CVE-2026-45485 — Microsoft Office Information Disclosure Vulnerability

Out-of-bounds read in Microsoft Office allows an unauthorized attacker to disclose information locally.

sharepoint_enterprise_server_2016 office_2016 sharepoint_server_2019 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.8 HIGH
CVE-2026-45484 — Microsoft SharePoint Elevation of Privilege Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
4.6 MEDIUM
CVE-2026-45483 — Microsoft Office Project Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office Project Server allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.4 HIGH
CVE-2026-45482 — Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability

Improper limitation of a pathname to a restricted directory ('path traversal') in GitHub Copilot and Visual Studio Code allows an unauthorized attacker to bypass a security feature locally.

visual_studio_code_copilot_chat_extension
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
7.3 HIGH
CVE-2026-45481 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
4.6 MEDIUM
CVE-2026-45479 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.2 HIGH
CVE-2026-45476 — Microsoft Azure Network Adapter Elevation of Privilege Vulnerability

Use after free in Linux MANA Driver allows an authorized attacker to elevate privileges locally.

Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
7.8 HIGH
CVE-2026-45475 — Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

sharepoint_enterprise_server_2016 office_2016 sharepoint_server_2019 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.4 HIGH
CVE-2026-45474 — Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

office_2016 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.4 HIGH
CVE-2026-45472 — Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

office_2016 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
7.8 HIGH
CVE-2026-45471 — Microsoft Word Remote Code Execution Vulnerability

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

sharepoint_enterprise_server_2016 word_2016 sharepoint_server_2019 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
7.8 HIGH
CVE-2026-45469 — Microsoft Excel Remote Code Execution Vulnerability

Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

office_online_server excel_2016 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
4.6 MEDIUM
CVE-2026-45468 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
4.6 MEDIUM
CVE-2026-45467 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
3.3 LOW
CVE-2026-45466 — Microsoft Word Information Disclosure Vulnerability

Heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
5.4 MEDIUM
CVE-2026-45465 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
5.4 MEDIUM
CVE-2026-45464 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
8.4 HIGH
CVE-2026-45463 — Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

office_2016 office_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
4.6 MEDIUM
CVE-2026-45462 — Microsoft SharePoint Server Spoofing Vulnerability

Improper neutralization of input during web page generation ('cross-site scripting') in Microsoft Office SharePoint allows an authorized attacker to perform spoofing over a network.

sharepoint_enterprise_server_2016 sharepoint_server_2019
Jun 09, 2026 Jun 09, 2026
Jun 09, 2026
Jun 09, 2026
Showing 20 of 7465 Results