M365 Change Tracker

← All changes · security · CVE-2026-40419

CVE-2026-40419ImportantMonitor

Microsoft Office Click-To-Run Elevation of Privilege Vulnerability

Severity Important  ·  Urgency Monitor

Why it matters: Important severity (CVSS 7.8)

Elevation of Privilege · Important · CVSS 7.8. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC.

CVSS 7.8EPSS 0.3%Update published 2026-06-23Source updated 2026-06-23NVD

Affected: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC

Change history

2026-06-23 · First seen

View at Microsoft →