Microsoft Office Word: Unauthorized Information Disclosure

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.1

Microsoft Office Word: Unauthorized Information Disclosure

CVE-2026-33822

Summary

An attacker can access sensitive information stored in Microsoft Office Word files without permission. This is a concern because it could allow an attacker to gain unauthorized access to confidential data. To mitigate this risk, update to the latest version of Microsoft Office Word.

Original title

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Original description

Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

nvd CVSS3.1 6.1

Vulnerability type

CWE-125 Out-of-bounds Read

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33822

Published: 14 Apr 2026 · Updated: 15 Apr 2026 · First seen: 14 Apr 2026