M365 Change Tracker

← All changes · security · CVE-2026-40421

CVE-2026-40421ImportantMonitor

Microsoft Word Information Disclosure Vulnerability

Severity Important  ·  Urgency Monitor

Why it matters: Important severity (CVSS 4.3)

Information Disclosure · Important · CVSS 4.3. Affects: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC, Microsoft Word.

CVSS 4.3EPSS 0.6%Update published 2026-06-23Source updated 2026-06-23KB5002858NVD

Affected: Microsoft Office, Microsoft 365 Apps, Microsoft Office LTSC, Microsoft Word

Change history

2026-06-23 · First seen

View at Microsoft →