Microsoft Office Excel: Unsecured Code Execution via Local File Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.8

Microsoft Office Excel: Unsecured Code Execution via Local File Access

CVE-2026-32199

Summary

An attacker can exploit a weakness in Microsoft Office Excel to run malicious code on a victim's system if they gain unauthorized access to a file. This could lead to data theft or disruption of business operations. Microsoft recommends updating to the latest version of Excel to fix this issue.

Original title

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Original description

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

nvd CVSS3.1 7.8

Vulnerability type

CWE-416 Use After Free

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32199

Published: 14 Apr 2026 · Updated: 14 Apr 2026 · First seen: 14 Apr 2026