[{"id":"cve-CVE-2026-42897","source":"msrc","kind":"security","title":"Microsoft Exchange Server Spoofing Vulnerability","description":"Spoofing · Critical · CVSS 8.1 · Exploited in the wild. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42897","products":["Exchange Server"],"categories":["security","critical","exploited"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.1,"cve":"CVE-2026-42897","vulnType":"Spoofing","exploited":true,"publiclyDisclosed":false,"kb":"KB5094144","kbUrl":"","kev":true,"kevDueDate":"2026-05-29","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42897","kevUrl":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c2e98d67","srcHash":"a426483a","epss":0.0564,"epssPercentile":0.91944,"impactReason":"Exploited in the wild — CISA fix-by 2026-05-29","urgency":"Immediate","urgencyReason":"Exploited in the wild · CISA deadline passed 25d ago","adminAction":""},{"id":"cve-CVE-2026-45498","source":"msrc","kind":"security","title":"Microsoft Defender Denial of Service Vulnerability","description":"Denial of Service · Low · CVSS 4 · Exploited in the wild. Affects: Microsoft Defender Antimalware Platform.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45498","products":["Microsoft Defender Antimalware Platform"],"categories":["security","exploited","disclosed"],"status":"Low","impact":"high","severity":"Low","cvss":4,"cve":"CVE-2026-45498","vulnType":"Denial of Service","exploited":true,"publiclyDisclosed":true,"kb":"","kbUrl":"","kev":true,"kevDueDate":"2026-06-03","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45498","kevUrl":"https://www.cisa.gov/known-exploited-vulnerabilities-catalog","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"894a9607","srcHash":"21fe413c","epss":0.63076,"epssPercentile":0.99091,"impactReason":"Exploited in the wild — CISA fix-by 2026-06-03","urgency":"Immediate","urgencyReason":"Exploited in the wild · CISA deadline passed 20d ago","adminAction":""},{"id":"cve-CVE-2026-42901","source":"msrc","kind":"security","title":"Microsoft Entra ID Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Critical · CVSS 10. Affects: Microsoft Entra ID.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42901","products":["Microsoft Entra ID"],"categories":["security","critical","eop"],"status":"Critical","impact":"high","severity":"Critical","cvss":10,"cve":"CVE-2026-42901","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42901","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"a27ea11b","srcHash":"8a01bc6e","epss":0.00301,"epssPercentile":0.2155,"impactReason":"Critical severity (CVSS 10)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-54130","source":"msrc","kind":"security","title":"M365 Copilot Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 9.8. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-54130","products":["Microsoft 365 Copilot"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.8,"cve":"CVE-2026-54130","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-54130","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"883b53c0","srcHash":"4579112b","epss":0.00504,"epssPercentile":0.39112,"impactReason":"Critical severity (CVSS 9.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-33823","source":"msrc","kind":"security","title":"Microsoft Team Events Portal Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 9.6. Affects: Microsoft Teams.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33823","products":["Microsoft Teams"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.6,"cve":"CVE-2026-33823","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-33823","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"cdc8c3bd","srcHash":"4c019188","epss":0.00719,"epssPercentile":0.49042,"impactReason":"Critical severity (CVSS 9.6)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-48582","source":"msrc","kind":"security","title":"Microsoft Exchange Online Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Critical · CVSS 9.6. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48582","products":["Exchange Server"],"categories":["security","critical","eop"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.6,"cve":"CVE-2026-48582","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-48582","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"4888fee1","srcHash":"2dfcdfb8","epss":0.00398,"epssPercentile":0.31474,"impactReason":"Critical severity (CVSS 9.6)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40379","source":"msrc","kind":"security","title":"Azure Entra ID Spoofing Vulnerability","description":"Spoofing · Critical · CVSS 9.3. Affects: Microsoft Entra ID.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40379","products":["Microsoft Entra ID"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.3,"cve":"CVE-2026-40379","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40379","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"3866401a","srcHash":"6c24881d","epss":0.0091,"epssPercentile":0.55306,"impactReason":"Critical severity (CVSS 9.3)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-41090","source":"msrc","kind":"security","title":"Microsoft Copilot Tampering Vulnerability","description":"Tampering · Critical · CVSS 9.3. Affects: Microsoft 365 Copilot for iOS.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41090","products":["Microsoft 365 Copilot for iOS"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.3,"cve":"CVE-2026-41090","vulnType":"Tampering","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-41090","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"493c85e9","srcHash":"ff760bea","epss":0.0042,"epssPercentile":0.33516,"impactReason":"Critical severity (CVSS 9.3)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-48579","source":"msrc","kind":"security","title":"Microsoft Exchange Online Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 9.1. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48579","products":["Exchange Server"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.1,"cve":"CVE-2026-48579","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-48579","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d53c57fa","srcHash":"de843195","epss":0.01015,"epssPercentile":0.58753,"impactReason":"Critical severity (CVSS 9.1)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-33843","source":"msrc","kind":"security","title":"Microsoft Azure Active Directory B2C Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Critical · CVSS 9.1. Affects: Microsoft Entra ID.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33843","products":["Microsoft Entra ID"],"categories":["security","critical","eop"],"status":"Critical","impact":"high","severity":"Critical","cvss":9.1,"cve":"CVE-2026-33843","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-33843","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c1b97063","srcHash":"c4178896","epss":0.00473,"epssPercentile":0.37226,"impactReason":"Critical severity (CVSS 9.1)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40365","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40365","products":["SharePoint Server"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.8,"cve":"CVE-2026-40365","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40365","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"b922c7c3","srcHash":"c1cd7de6","epss":0.00961,"epssPercentile":0.5697,"impactReason":"Critical severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47645","source":"msrc","kind":"security","title":"Microsoft 365 Copilot's Business Chat Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Critical · CVSS 8.8. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47645","products":["Microsoft 365 Copilot"],"categories":["security","critical","eop"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.8,"cve":"CVE-2026-47645","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47645","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"531d3549","srcHash":"269ed180","epss":0.00417,"epssPercentile":0.33236,"impactReason":"Critical severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40364","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40364","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Word"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40364","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002858","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108649","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40364","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"cc276af8","srcHash":"ff6c4ac9","epss":0.04421,"epssPercentile":0.90098,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40361","source":"msrc","kind":"security","title":"Microsoft Outlook and Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40361","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Word"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40361","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002858","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108649","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40361","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"bedcbcc5","srcHash":"b903ad9c","epss":0.00605,"epssPercentile":0.44278,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40367","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40367","products":["SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Word"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40367","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40367","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"49356dc9","srcHash":"de559d08","epss":0.00453,"epssPercentile":0.35953,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45456","source":"msrc","kind":"security","title":"Microsoft Outlook and Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45456","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45456","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45456","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"580ce35b","srcHash":"193d141e","epss":0.00438,"epssPercentile":0.34879,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45458","source":"msrc","kind":"security","title":"Microsoft Outlook and Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45458","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45458","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45458","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"34359c19","srcHash":"a0bdd298","epss":0.00438,"epssPercentile":0.34879,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40363","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40363","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office for Android"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40363","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002866","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108647","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40363","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"ecb2d4d1","srcHash":"f9a54df0","epss":0.00383,"epssPercentile":0.29984,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40366","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40366","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Word"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40366","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002858","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108649","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40366","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"83eaa802","srcHash":"6df94c7f","epss":0.00383,"epssPercentile":0.29984,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40358","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40358","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-40358","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002866","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108647","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40358","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"fd2f91ff","srcHash":"28312dea","epss":0.00369,"epssPercentile":0.2857,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45474","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45474","products":["Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office for Android"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45474","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002878","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108688","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45474","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"7b9fe4d9","srcHash":"f1e8d58","epss":0.00364,"epssPercentile":0.28126,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45461","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office for Android, Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45461","products":["Microsoft Office for Android","Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45461","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002878","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108688","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45461","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"631ab313","srcHash":"990c42b6","epss":0.00364,"epssPercentile":0.28125,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45472","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office for Android, Microsoft Office 365 for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45472","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office for Android","Microsoft Office 365 for Mac"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45472","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002878","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108688","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45472","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"f4e9e8b7","srcHash":"807c8842","epss":0.00339,"epssPercentile":0.25611,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45463","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office 365 for Mac, Microsoft Office for Android, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45463","products":["Microsoft Office 365 for Mac","Microsoft Office for Android","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-45463","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002878","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108688","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45463","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"828fee89","srcHash":"9a330fc8","epss":0.00339,"epssPercentile":0.25611,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47635","source":"msrc","kind":"security","title":"Microsoft Outlook and Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 8.4. Affects: Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47635","products":["Microsoft Office LTSC"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":8.4,"cve":"CVE-2026-47635","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47635","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"164d1734","srcHash":"7cb6217d","epss":0.00333,"epssPercentile":0.24989,"impactReason":"Critical severity (CVSS 8.4)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44803","source":"msrc","kind":"security","title":"Windows Graphics Component Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 7.8. Affects: Windows 10 Version, Windows Server, Windows 10 Version 21H2 for 32-bit Systems, Windows 10 Version 21H2 for ARM64-based Systems, Windows 10 Version 21H2 for x64-based Systems, Windows 10 Version 22H2 for x64-based Systems.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44803","products":["Windows 10 Version","Windows Server","Windows 10 Version 21H2 for 32-bit Systems","Windows 10 Version 21H2 for ARM64-based Systems","Windows 10 Version 21H2 for x64-based Systems","Windows 10 Version 22H2 for x64-based Systems"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.8,"cve":"CVE-2026-44803","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5094123","kbUrl":"https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5094123","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44803","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"4e05ffc8","srcHash":"4c881ed9","epss":0.00437,"epssPercentile":0.34797,"impactReason":"Critical severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44812","source":"msrc","kind":"security","title":"Windows Graphics Component Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 7.8. Affects: Windows 10 Version, Windows Server, Windows 10 Version 21H2 for 32-bit Systems, Windows 10 Version 21H2 for ARM64-based Systems, Windows 10 Version 21H2 for x64-based Systems, Windows 10 Version 22H2 for x64-based Systems.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44812","products":["Windows 10 Version","Windows Server","Windows 10 Version 21H2 for 32-bit Systems","Windows 10 Version 21H2 for ARM64-based Systems","Windows 10 Version 21H2 for x64-based Systems","Windows 10 Version 22H2 for x64-based Systems"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.8,"cve":"CVE-2026-44812","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5094123","kbUrl":"https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5094123","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44812","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"886db78e","srcHash":"dfca553","epss":0.00437,"epssPercentile":0.34796,"impactReason":"Critical severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42831","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 7.8. Affects: Microsoft Office LTSC for Mac, Microsoft Office for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42831","products":["Microsoft Office LTSC for Mac","Microsoft Office for Android"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.8,"cve":"CVE-2026-42831","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42831","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"dc9180c4","srcHash":"17dc468d","epss":0.00437,"epssPercentile":0.34797,"impactReason":"Critical severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45497","source":"msrc","kind":"security","title":"Microsoft M365 Copilot Remote Code Execution Vulnerability","description":"Remote Code Execution · Critical · CVSS 7.7. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45497","products":["Microsoft 365 Copilot"],"categories":["security","critical","rce"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.7,"cve":"CVE-2026-45497","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45497","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"13e903f5","srcHash":"67ced28c","epss":0.00452,"epssPercentile":0.35901,"impactReason":"Critical severity (CVSS 7.7)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-26129","source":"msrc","kind":"security","title":"M365 Copilot Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 7.5. Affects: Microsoft 365 Copilot's Business Chat.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26129","products":["Microsoft 365 Copilot's Business Chat"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.5,"cve":"CVE-2026-26129","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-26129","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"1f9bfba6","srcHash":"b9d4a8f1","epss":0.01135,"epssPercentile":0.62359,"impactReason":"Critical severity (CVSS 7.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-26164","source":"msrc","kind":"security","title":"M365 Copilot Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 7.5. Affects: Microsoft 365 Copilot's Business Chat.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26164","products":["Microsoft 365 Copilot's Business Chat"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.5,"cve":"CVE-2026-26164","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-26164","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"152d8ddf","srcHash":"e239d74a","epss":0.00799,"epssPercentile":0.51759,"impactReason":"Critical severity (CVSS 7.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-23663","source":"msrc","kind":"security","title":"Microsoft Global Secure Access (GSA) Information Disclosure Vulnerability","description":"Elevation of Privilege · Critical · CVSS 7.5. Affects: Microsoft Global Secure Access (GSA).","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-23663","products":["Microsoft Global Secure Access (GSA)"],"categories":["security","critical","eop"],"status":"Critical","impact":"high","severity":"Critical","cvss":7.5,"cve":"CVE-2026-23663","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-23663","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"cd511047","srcHash":"e6a9e11a","epss":0.00551,"epssPercentile":0.41729,"impactReason":"Critical severity (CVSS 7.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42824","source":"msrc","kind":"security","title":"M365 Copilot Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 6.5. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42824","products":["Microsoft 365 Copilot"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":6.5,"cve":"CVE-2026-42824","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42824","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"4f8fb513","srcHash":"b0b4a21e","epss":0.0764,"epssPercentile":0.93781,"impactReason":"Critical severity (CVSS 6.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42827","source":"msrc","kind":"security","title":"M365 Copilot Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 6.5. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42827","products":["Microsoft 365 Copilot"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":6.5,"cve":"CVE-2026-42827","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42827","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"b63e3a38","srcHash":"edc0f383","epss":0.00503,"epssPercentile":0.39013,"impactReason":"Critical severity (CVSS 6.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42895","source":"msrc","kind":"security","title":"Microsoft Copilot Tampering Vulnerability","description":"Tampering · Critical · CVSS 6.5. Affects: Microsoft 365 Copilot.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42895","products":["Microsoft 365 Copilot"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":6.5,"cve":"CVE-2026-42895","vulnType":"Tampering","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42895","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"34408bb2","srcHash":"96a8350d","epss":0.00388,"epssPercentile":0.30491,"impactReason":"Critical severity (CVSS 6.5)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45460","source":"msrc","kind":"security","title":"Microsoft Office Information Disclosure Vulnerability","description":"Information Disclosure · Critical · CVSS 4.7. Affects: Microsoft Office for Android, Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45460","products":["Microsoft Office for Android","Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","critical"],"status":"Critical","impact":"high","severity":"Critical","cvss":4.7,"cve":"CVE-2026-45460","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45460","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"209130db","srcHash":"14eb97e6","epss":0.00357,"epssPercentile":0.27402,"impactReason":"Critical severity (CVSS 4.7)","urgency":"Monitor","urgencyReason":"Critical severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45659","source":"msrc","kind":"security","title":"Microsoft SharePoint Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-45659","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45659","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"5b713f68","srcHash":"f5bb41b9","epss":0.02781,"epssPercentile":0.84505,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-33112","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33112","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-33112","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-33112","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"9a350faa","srcHash":"1df2a567","epss":0.02108,"epssPercentile":0.79366,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-35439","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35439","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-35439","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-35439","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"77b9a0d8","srcHash":"817418e9","epss":0.02032,"epssPercentile":0.78543,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45484","source":"msrc","kind":"security","title":"Microsoft SharePoint Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45484","products":["SharePoint Server"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-45484","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45484","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"8a9daa24","srcHash":"26abd253","epss":0.01982,"epssPercentile":0.77978,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-33110","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33110","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-33110","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-33110","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"55657d8c","srcHash":"43fd7ad5","epss":0.01967,"epssPercentile":0.77798,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40357","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8.8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40357","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-40357","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40357","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"6febef61","srcHash":"3d48e6c0","epss":0.01698,"epssPercentile":0.7419,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45504","source":"msrc","kind":"security","title":"Microsoft Exchange Server Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 8.8. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45504","products":["Exchange Server"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-45504","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"KB5094139","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108698","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45504","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"83deca84","srcHash":"b90071b3","epss":0.00426,"epssPercentile":0.3397,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-35436","source":"msrc","kind":"security","title":"Microsoft Office Click-To-Run Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 8.8. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35436","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-35436","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-35436","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"8365c54f","srcHash":"b4ea2382","epss":0.00219,"epssPercentile":0.12162,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40420","source":"msrc","kind":"security","title":"Microsoft Office Click-To-Run Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 8.8. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40420","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":8.8,"cve":"CVE-2026-40420","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40420","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"a289eb56","srcHash":"f4902341","epss":0.00212,"epssPercentile":0.11346,"impactReason":"Important severity (CVSS 8.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44822","source":"msrc","kind":"security","title":"Microsoft Excel Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 8.2. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44822","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":8.2,"cve":"CVE-2026-44822","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44822","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"8e3292dd","srcHash":"f4b09228","epss":0.00518,"epssPercentile":0.39912,"impactReason":"Important severity (CVSS 8.2)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42835","source":"msrc","kind":"security","title":"Microsoft Teams for Android Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 8.1. Affects: Microsoft Teams for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42835","products":["Microsoft Teams for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":8.1,"cve":"CVE-2026-42835","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42835","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"7c65d921","srcHash":"809ec42c","epss":0.01259,"epssPercentile":0.65775,"impactReason":"Important severity (CVSS 8.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45503","source":"msrc","kind":"security","title":"Microsoft Exchange Server Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 8.1. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45503","products":["Exchange Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":8.1,"cve":"CVE-2026-45503","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5094144","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45503","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"f4abdecc","srcHash":"4f0610e7","epss":0.00454,"epssPercentile":0.36056,"impactReason":"Important severity (CVSS 8.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47631","source":"msrc","kind":"security","title":"Microsoft Exchange Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 8.1. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47631","products":["Exchange Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":8.1,"cve":"CVE-2026-47631","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5094144","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47631","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"7870410a","srcHash":"aa430d8d","epss":0.00353,"epssPercentile":0.27075,"impactReason":"Important severity (CVSS 8.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40368","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40368","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8,"cve":"CVE-2026-40368","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40368","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"35649cdd","srcHash":"e2063a34","epss":0.01977,"epssPercentile":0.77914,"impactReason":"Important severity (CVSS 8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47298","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47298","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8,"cve":"CVE-2026-47298","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47298","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"9dcf4d9e","srcHash":"5febd6e3","epss":0.00669,"epssPercentile":0.47099,"impactReason":"Important severity (CVSS 8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47294","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 8. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47294","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":8,"cve":"CVE-2026-47294","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002868","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108651","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47294","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"f70ab4aa","srcHash":"c38c6267","epss":0.00638,"epssPercentile":0.45791,"impactReason":"Important severity (CVSS 8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45475","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45475","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45475","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45475","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"748c61ba","srcHash":"fef3d4b7","epss":0.00457,"epssPercentile":0.36184,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45471","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45471","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45471","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45471","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"32d7ac46","srcHash":"ec4ab4eb","epss":0.00457,"epssPercentile":0.36184,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44819","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: SharePoint Server, Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44819","products":["SharePoint Server","Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-44819","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44819","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"abd7202b","srcHash":"867f042e","epss":0.00455,"epssPercentile":0.3607,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44824","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44824","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-44824","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44824","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d29351b7","srcHash":"28dce942","epss":0.00455,"epssPercentile":0.36071,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40360","source":"msrc","kind":"security","title":"Microsoft Excel Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 7.8. Affects: Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Excel.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40360","products":["Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Excel"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40360","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002871","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108650","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40360","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"e746e28f","srcHash":"e9bb55ba","epss":0.00408,"epssPercentile":0.32412,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45469","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45469","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45469","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45469","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"72e47d54","srcHash":"57f8875d","epss":0.00372,"epssPercentile":0.28851,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45486","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Microsoft 365 Apps, Microsoft Office LTSC for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45486","products":["Microsoft Office 365 for Mac","Microsoft 365 Apps","Microsoft Office LTSC for Mac"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45486","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45486","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"53afef74","srcHash":"df7477bd","epss":0.00372,"epssPercentile":0.28851,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44817","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44817","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-44817","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44817","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c711d54c","srcHash":"19728895","epss":0.00372,"epssPercentile":0.2885,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44820","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44820","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-44820","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44820","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"93bc7dfe","srcHash":"d9a1e483","epss":0.00372,"epssPercentile":0.28849,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44823","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44823","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-44823","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44823","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"ed54d6f","srcHash":"b87ad55a","epss":0.00372,"epssPercentile":0.2885,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45643","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office 365 for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45643","products":["Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office 365 for Mac"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45643","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45643","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c53e42e7","srcHash":"444b3eb2","epss":0.00372,"epssPercentile":0.2885,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45645","source":"msrc","kind":"security","title":"Microsoft Office Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45645","products":["Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45645","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002852","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108689","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45645","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"deb75109","srcHash":"667bfe48","epss":0.00372,"epssPercentile":0.28849,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45457","source":"msrc","kind":"security","title":"Microsoft Word Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Microsoft Office 365 for Mac, Microsoft 365 Apps, Microsoft Office LTSC for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45457","products":["Microsoft Office 365 for Mac","Microsoft 365 Apps","Microsoft Office LTSC for Mac"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-45457","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45457","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"67779b32","srcHash":"180a42af","epss":0.00372,"epssPercentile":0.28851,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40359","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Excel.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40359","products":["Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Excel"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40359","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002871","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108650","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40359","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"ff00031f","srcHash":"22e7504a","epss":0.00332,"epssPercentile":0.24816,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40362","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.8. Affects: Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Excel.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40362","products":["Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Excel"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40362","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002871","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108650","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40362","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"12fc90a9","srcHash":"6d731328","epss":0.00321,"epssPercentile":0.2373,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40419","source":"msrc","kind":"security","title":"Microsoft Office Click-To-Run Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 7.8. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40419","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40419","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40419","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"774262db","srcHash":"6700d12e","epss":0.00305,"epssPercentile":0.21957,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40417","source":"msrc","kind":"security","title":"Microsoft Dynamics 365 Business Central Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 7.8. Affects: Microsoft Dynamics 365 Business Central, Microsoft Dynamics 365 Business Central Release Wave 1, Microsoft Dynamics 365 Business Central Release Wave 2.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40417","products":["Microsoft Dynamics 365 Business Central","Microsoft Dynamics 365 Business Central Release Wave 1","Microsoft Dynamics 365 Business Central Release Wave 2"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40417","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"KB5093780","kbUrl":"https://support.microsoft.com/en-us/topic/update-28-1-for-microsoft-dynamics-365-business-central-2026-release-wave-1-application-build-28-1-49886-platform-build-28-0-49873-fdf9d853-6477-4413-9d72-4fd762c7eeaf","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40417","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"e2174db8","srcHash":"4e3c8fd7","epss":0.00272,"epssPercentile":0.18801,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40418","source":"msrc","kind":"security","title":"Microsoft Office Click-To-Run Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 7.8. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40418","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":7.8,"cve":"CVE-2026-40418","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40418","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"844d7312","srcHash":"61ee508d","epss":0.00254,"epssPercentile":0.16565,"impactReason":"Important severity (CVSS 7.8)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42832","source":"msrc","kind":"security","title":"Microsoft Office Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.7. Affects: Microsoft Word for Android, Microsoft Excel for Android, Microsoft Office LTSC for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42832","products":["Microsoft Word for Android","Microsoft Excel for Android","Microsoft Office LTSC for Mac"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.7,"cve":"CVE-2026-42832","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42832","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"844a6ae7","srcHash":"ca0e492e","epss":0.00222,"epssPercentile":0.12589,"impactReason":"Important severity (CVSS 7.7)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45583","source":"msrc","kind":"security","title":"Microsoft Exchange Server Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7.5. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45583","products":["Exchange Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7.5,"cve":"CVE-2026-45583","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5094144","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45583","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c8840c27","srcHash":"f28ae5f2","epss":0.00475,"epssPercentile":0.3734,"impactReason":"Important severity (CVSS 7.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-42893","source":"msrc","kind":"security","title":"Microsoft Outlook for iOS Tampering Vulnerability","description":"Tampering · Important · CVSS 7.4. Affects: Microsoft Outlook for iOS.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-42893","products":["Microsoft Outlook for iOS"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.4,"cve":"CVE-2026-42893","vulnType":"Tampering","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-42893","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"da55e266","srcHash":"9c315ac1","epss":0.00399,"epssPercentile":0.3161,"impactReason":"Important severity (CVSS 7.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45481","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.3. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45481","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.3,"cve":"CVE-2026-45481","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45481","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d2afd6ea","srcHash":"7507a22d","epss":0.00687,"epssPercentile":0.47849,"impactReason":"Important severity (CVSS 7.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47634","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.3. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47634","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.3,"cve":"CVE-2026-47634","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002874","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108694","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47634","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"5bb0a1d2","srcHash":"c6062d75","epss":0.00559,"epssPercentile":0.4214,"impactReason":"Important severity (CVSS 7.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45649","source":"msrc","kind":"security","title":"Office for Android Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.1. Affects: Microsoft Excel for Android, Microsoft PowerPoint for Android, Microsoft Word for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45649","products":["Microsoft Excel for Android","Microsoft PowerPoint for Android","Microsoft Word for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.1,"cve":"CVE-2026-45649","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45649","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"5e435d1e","srcHash":"6aa13ad9","epss":0.00419,"epssPercentile":0.33413,"impactReason":"Important severity (CVSS 7.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-41101","source":"msrc","kind":"security","title":"Microsoft Word for Android Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.1. Affects: Microsoft Word for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41101","products":["Microsoft Word for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.1,"cve":"CVE-2026-41101","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-41101","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"b80be8eb","srcHash":"652134a","epss":0.00292,"epssPercentile":0.20705,"impactReason":"Important severity (CVSS 7.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-41102","source":"msrc","kind":"security","title":"Microsoft PowerPoint for Android Spoofing Vulnerability","description":"Spoofing · Important · CVSS 7.1. Affects: Microsoft PowerPoint for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41102","products":["Microsoft PowerPoint for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":7.1,"cve":"CVE-2026-41102","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-41102","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"7b4ba441","srcHash":"8e60724c","epss":0.00292,"epssPercentile":0.20704,"impactReason":"Important severity (CVSS 7.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44818","source":"msrc","kind":"security","title":"Microsoft Excel Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 7. Affects: Microsoft Office 365 for Mac, Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44818","products":["Microsoft Office 365 for Mac","Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":7,"cve":"CVE-2026-44818","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44818","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"32356afb","srcHash":"d11427e","epss":0.00263,"epssPercentile":0.17491,"impactReason":"Important severity (CVSS 7)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47293","source":"msrc","kind":"security","title":"Microsoft Office Click-To-Run Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 7. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47293","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":7,"cve":"CVE-2026-47293","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47293","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d43e6010","srcHash":"b29feb4f","epss":0.00234,"epssPercentile":0.14033,"impactReason":"Important severity (CVSS 7)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-21530","source":"msrc","kind":"security","title":"Windows Rich Text Edit Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 6.7. Affects: Windows 10 Version, Windows Server, Windows 10 Version 21H2 for 32-bit Systems, Windows 10 Version 21H2 for ARM64-based Systems, Windows 10 Version 21H2 for x64-based Systems, Windows 10 Version 22H2 for x64-based Systems.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21530","products":["Windows 10 Version","Windows Server","Windows 10 Version 21H2 for 32-bit Systems","Windows 10 Version 21H2 for ARM64-based Systems","Windows 10 Version 21H2 for x64-based Systems","Windows 10 Version 22H2 for x64-based Systems"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":6.7,"cve":"CVE-2026-21530","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"KB5087538","kbUrl":"https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5087538","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-21530","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"e9598488","srcHash":"9b111d87","epss":0.00319,"epssPercentile":0.23512,"impactReason":"Important severity (CVSS 6.7)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45454","source":"msrc","kind":"security","title":"Microsoft SharePoint Remote Code Execution Vulnerability","description":"Remote Code Execution · Important · CVSS 6.5. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45454","products":["SharePoint Server"],"categories":["security","rce"],"status":"Important","impact":"medium","severity":"Important","cvss":6.5,"cve":"CVE-2026-45454","vulnType":"Remote Code Execution","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45454","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"65bc3e3a","srcHash":"59afed37","epss":0.0163,"epssPercentile":0.73113,"impactReason":"Important severity (CVSS 6.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45501","source":"msrc","kind":"security","title":"Microsoft Exchange Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 6.5. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45501","products":["Exchange Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":6.5,"cve":"CVE-2026-45501","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5094139","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108698","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45501","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"88661878","srcHash":"dea3e7cf","epss":0.00308,"epssPercentile":0.22313,"impactReason":"Important severity (CVSS 6.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-41614","source":"msrc","kind":"security","title":"M365 Copilot for Desktop Spoofing Vulnerability","description":"Spoofing · Important · CVSS 6.2. Affects: M365 Copilot for Desktop.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41614","products":["M365 Copilot for Desktop"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":6.2,"cve":"CVE-2026-41614","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-41614","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"68a9c6e4","srcHash":"25c9293","epss":0.00363,"epssPercentile":0.28069,"impactReason":"Important severity (CVSS 6.2)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45500","source":"msrc","kind":"security","title":"Microsoft Exchange Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 6.1. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45500","products":["Exchange Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":6.1,"cve":"CVE-2026-45500","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5094142","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45500","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"f060f041","srcHash":"a97964c","epss":0.00375,"epssPercentile":0.29158,"impactReason":"Important severity (CVSS 6.1)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-32185","source":"msrc","kind":"security","title":"Microsoft Teams Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.5. Affects: Microsoft Teams for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-32185","products":["Microsoft Teams for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.5,"cve":"CVE-2026-32185","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-32185","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"78602ca5","srcHash":"f8d100e8","epss":0.00466,"epssPercentile":0.36798,"impactReason":"Important severity (CVSS 5.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-44821","source":"msrc","kind":"security","title":"Microsoft Office Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 5.5. Affects: SharePoint Server, Microsoft Office 365 for Mac, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-44821","products":["SharePoint Server","Microsoft Office 365 for Mac","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.5,"cve":"CVE-2026-44821","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002873","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108692","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-44821","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"72449d21","srcHash":"195bf02c","epss":0.00465,"epssPercentile":0.36705,"impactReason":"Important severity (CVSS 5.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-35440","source":"msrc","kind":"security","title":"Microsoft Word Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 5.5. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-35440","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC","Microsoft Word"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.5,"cve":"CVE-2026-35440","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002858","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108649","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-35440","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"b72855c","srcHash":"20a04437","epss":0.00448,"epssPercentile":0.35623,"impactReason":"Important severity (CVSS 5.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45647","source":"msrc","kind":"security","title":"Microsoft Defender for Endpoint for Mac Elevation of Privilege Vulnerability","description":"Elevation of Privilege · Important · CVSS 5.5. Affects: Microsoft Defender for Endpoint for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45647","products":["Microsoft Defender for Endpoint for Mac"],"categories":["security","eop"],"status":"Important","impact":"medium","severity":"Important","cvss":5.5,"cve":"CVE-2026-45647","vulnType":"Elevation of Privilege","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45647","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"3ca6e7ef","srcHash":"f2b1a422","epss":0.00215,"epssPercentile":0.11716,"impactReason":"Important severity (CVSS 5.5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-48560","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48560","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-48560","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-48560","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d3a5612c","srcHash":"a37b75fb","epss":0.00937,"epssPercentile":0.56209,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-33113","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-33113","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-33113","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-33113","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"deaefffc","srcHash":"24de40cb","epss":0.00522,"epssPercentile":0.40129,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45453","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45453","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-45453","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45453","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"818ae7dc","srcHash":"45e42eeb","epss":0.0051,"epssPercentile":0.39403,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47636","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47636","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-47636","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47636","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c824de93","srcHash":"af9dd692","epss":0.0051,"epssPercentile":0.39402,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47639","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47639","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-47639","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47639","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"640599cc","srcHash":"48473c5b","epss":0.0051,"epssPercentile":0.39403,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45464","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45464","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-45464","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45464","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"d0de0636","srcHash":"ee6c9331","epss":0.0051,"epssPercentile":0.39402,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45465","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 5.4. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45465","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5.4,"cve":"CVE-2026-45465","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45465","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"2974bc6f","srcHash":"9d6d2f6","epss":0.0051,"epssPercentile":0.39403,"impactReason":"Important severity (CVSS 5.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45502","source":"msrc","kind":"security","title":"Microsoft Exchange Server Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 5. Affects: Exchange Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45502","products":["Exchange Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":5,"cve":"CVE-2026-45502","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5094142","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45502","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"68ba0c4b","srcHash":"5993f996","epss":0.0044,"epssPercentile":0.35033,"impactReason":"Important severity (CVSS 5)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45467","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45467","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-45467","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45467","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"66f4b1d8","srcHash":"df37faef","epss":0.00505,"epssPercentile":0.39132,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45468","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45468","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-45468","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45468","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"550d4b3b","srcHash":"26dd8d5a","epss":0.00505,"epssPercentile":0.39134,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45479","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45479","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-45479","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45479","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"73625a71","srcHash":"4dd8affc","epss":0.00505,"epssPercentile":0.39134,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45483","source":"msrc","kind":"security","title":"Microsoft Office Project Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45483","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-45483","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002873","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108692","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45483","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"bbbb4378","srcHash":"90bbb8cf","epss":0.00505,"epssPercentile":0.39133,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47637","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47637","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-47637","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47637","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"df1ac4a3","srcHash":"c84311e2","epss":0.00505,"epssPercentile":0.39133,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47638","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47638","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-47638","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47638","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"31d76ab0","srcHash":"b4029687","epss":0.00505,"epssPercentile":0.39135,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47641","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47641","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-47641","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47641","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"44d8b3cc","srcHash":"5428ea5b","epss":0.00505,"epssPercentile":0.39133,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45462","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45462","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-45462","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45462","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"610ebc9d","srcHash":"607f600","epss":0.00505,"epssPercentile":0.39134,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-47640","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-47640","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-47640","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-47640","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"83cc782d","srcHash":"c60f6bd0","epss":0.00505,"epssPercentile":0.39135,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-48562","source":"msrc","kind":"security","title":"Microsoft SharePoint Server Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.6. Affects: SharePoint Server.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-48562","products":["SharePoint Server"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.6,"cve":"CVE-2026-48562","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-48562","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"af3c2c77","srcHash":"2175d33e","epss":0.00505,"epssPercentile":0.39134,"impactReason":"Important severity (CVSS 4.6)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-41100","source":"msrc","kind":"security","title":"Microsoft 365 Copilot for Android Spoofing Vulnerability","description":"Spoofing · Important · CVSS 4.4. Affects: Microsoft 365 Copilot for Android, Microsoft Excel for Android, Microsoft Word for Android, Microsoft PowerPoint for Android, Microsoft Loop for Android, Microsoft OneNote for Android.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-41100","products":["Microsoft 365 Copilot for Android","Microsoft Excel for Android","Microsoft Word for Android","Microsoft PowerPoint for Android","Microsoft Loop for Android","Microsoft OneNote for Android"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.4,"cve":"CVE-2026-41100","vulnType":"Spoofing","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-41100","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"636dedb8","srcHash":"ceda760f","epss":0.00249,"epssPercentile":0.15892,"impactReason":"Important severity (CVSS 4.4)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-40421","source":"msrc","kind":"security","title":"Microsoft Word Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 4.3. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC, Microsoft Word.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-40421","products":["Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC","Microsoft Word"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":4.3,"cve":"CVE-2026-40421","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002858","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108649","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-40421","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"4a823378","srcHash":"9114c443","epss":0.0062,"epssPercentile":0.45,"impactReason":"Important severity (CVSS 4.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45455","source":"msrc","kind":"security","title":"Microsoft Excel Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 3.3. Affects: Office Online Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Excel.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45455","products":["Office Online Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Excel"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":3.3,"cve":"CVE-2026-45455","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002875","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108691","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45455","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"e275aa76","srcHash":"b36ec7c1","epss":0.00629,"epssPercentile":0.45394,"impactReason":"Important severity (CVSS 3.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45485","source":"msrc","kind":"security","title":"Microsoft Office Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 3.3. Affects: Microsoft Office 365 for Mac, SharePoint Server, Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45485","products":["Microsoft Office 365 for Mac","SharePoint Server","Microsoft Office","Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":3.3,"cve":"CVE-2026-45485","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"KB5002880","kbUrl":"https://www.microsoft.com/en-us/download/details.aspx?id=108696","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45485","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"53088536","srcHash":"c59a501","epss":0.00437,"epssPercentile":0.34823,"impactReason":"Important severity (CVSS 3.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45466","source":"msrc","kind":"security","title":"Microsoft Word Information Disclosure Vulnerability","description":"Information Disclosure · Important · CVSS 3.3. Affects: Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office 365 for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45466","products":["Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office 365 for Mac"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":3.3,"cve":"CVE-2026-45466","vulnType":"Information Disclosure","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45466","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"89e116f9","srcHash":"db4f06c4","epss":0.00371,"epssPercentile":0.28812,"impactReason":"Important severity (CVSS 3.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""},{"id":"cve-CVE-2026-45459","source":"msrc","kind":"security","title":"Microsoft Excel Security Feature Bypass Vulnerability","description":"Security Feature Bypass · Important · CVSS 3.3. Affects: Microsoft 365 Apps, Microsoft Office LTSC for Mac, Microsoft Office LTSC, Microsoft Office 365 for Mac.","link":"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45459","products":["Microsoft 365 Apps","Microsoft Office LTSC for Mac","Microsoft Office LTSC","Microsoft Office 365 for Mac"],"categories":["security"],"status":"Important","impact":"medium","severity":"Important","cvss":3.3,"cve":"CVE-2026-45459","vulnType":"Security Feature Bypass","exploited":false,"publiclyDisclosed":false,"kb":"","kbUrl":"","kev":false,"kevDueDate":"","nvdUrl":"https://nvd.nist.gov/vuln/detail/CVE-2026-45459","kevUrl":"","patchDate":"2026-06-23","created":"2026-06-23T00:00:00.000Z","modified":"2026-06-23T00:00:00.000Z","hash":"c165633f","srcHash":"ee47cfcb","epss":0.00371,"epssPercentile":0.28811,"impactReason":"Important severity (CVSS 3.3)","urgency":"Monitor","urgencyReason":"Important severity, no known exploitation","adminAction":""}]