{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-26134", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "state": "PUBLISHED", "assignerShortName": "microsoft", "dateReserved": "2026-02-11T16:24:51.133Z", "datePublished": "2026-03-10T17:05:10.187Z", "dateUpdated": "2026-04-14T16:36:17.327Z"}, "containers": {"cna": {"title": "Microsoft Office Elevation of Privilege Vulnerability", "datePublic": "2026-03-10T14:00:00.000Z", "cpeApplicability": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:microsoft:office:*:*:android:*:*:*:*:*", "versionStartIncluding": "16.0.1", "versionEndExcluding": "16.0.19822.20000"}]}]}], "affected": [{"vendor": "Microsoft", "product": "Microsoft Office for Android", "versions": [{"version": "16.0.1", "lessThan": "16.0.19822.20000", "versionType": "custom", "status": "affected"}]}], "descriptions": [{"value": "Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally.", "lang": "en-US"}], "problemTypes": [{"descriptions": [{"description": "CWE-190: Integer Overflow or Wraparound", "lang": "en-US", "type": "CWE", "cweId": "CWE-190"}, {"description": "CWE-416: Use After Free", "lang": "en-US", "type": "CWE", "cweId": "CWE-416"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-04-14T16:36:17.327Z"}, "references": [{"name": "Microsoft Office Elevation of Privilege Vulnerability", "tags": ["vendor-advisory", "patch"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26134"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en-US", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "baseSeverity": "HIGH", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C"}}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-05T00:00:00+00:00", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3", "id": "CVE-2026-26134"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T03:55:38.161Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-26134", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-10T18:39:42.989581Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-10T18:39:44.170Z"}}], "cna": {"title": "Microsoft Office Elevation of Privilege Vulnerability", "metrics": [{"format": "CVSS", "cvssV3_1": {"version": "3.1", "baseScore": 7.8, "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C"}, "scenarios": [{"lang": "en-US", "value": "GENERAL"}]}], "affected": [{"vendor": "Microsoft", "product": "Microsoft Office for Android", "versions": [{"status": "affected", "version": "16.0.1", "lessThan": "16.0.19822.20000", "versionType": "custom"}]}], "datePublic": "2026-03-10T14:00:00.000Z", "references": [{"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26134", "name": "Microsoft Office Elevation of Privilege Vulnerability", "tags": ["vendor-advisory", "patch"]}], "descriptions": [{"lang": "en-US", "value": "Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally."}], "problemTypes": [{"descriptions": [{"lang": "en-US", "type": "CWE", "cweId": "CWE-190", "description": "CWE-190: Integer Overflow or Wraparound"}, {"lang": "en-US", "type": "CWE", "cweId": "CWE-416", "description": "CWE-416: Use After Free"}]}], "cpeApplicability": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:office:*:*:android:*:*:*:*:*", "vulnerable": true, "versionEndExcluding": "16.0.19822.20000", "versionStartIncluding": "16.0.1"}], "operator": "OR"}]}], "providerMetadata": {"orgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "shortName": "microsoft", "dateUpdated": "2026-04-14T16:36:17.327Z"}}}, "cveMetadata": {"cveId": "CVE-2026-26134", "state": "PUBLISHED", "dateUpdated": "2026-04-14T16:36:17.327Z", "dateReserved": "2026-02-11T16:24:51.133Z", "assignerOrgId": "f38d906d-7342-40ea-92c1-6c4a2c6478c8", "datePublished": "2026-03-10T17:05:10.187Z", "assignerShortName": "microsoft"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:office:*:*:*:*:*:android:*:*", "matchCriteriaId": "7FD93048-8E0A-4316-BC0E-3182FC19B25D", "versionEndExcluding": "16.0.19822.20000", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Integer overflow or wraparound in Microsoft Office allows an authorized attacker to elevate privileges locally."}, {"lang": "es", "value": "Desbordamiento de entero o ajuste circular en Microsoft Office permite a un atacante autorizado elevar privilegios localmente."}], "id": "CVE-2026-26134", "lastModified": "2026-03-13T17:06:18.123", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "secure@microsoft.com", "type": "Primary"}]}, "published": "2026-03-10T18:18:42.803", "references": [{"source": "secure@microsoft.com", "tags": ["Vendor Advisory"], "url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-26134"}], "sourceIdentifier": "secure@microsoft.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-190"}, {"lang": "en", "value": "CWE-416"}], "source": "secure@microsoft.com", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-190"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[16.0.1,16.0.19822.20000)"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "Microsoft Office for Android", "source": "cna", "vendor": "Microsoft"}, "product": "office", "vendor": "microsoft"}], "analysis": {"en": {"generated_at": "2026-03-16T23:47:03.773545+00:00", "value": {"mitigation_remediation": ["Update Microsoft Office for Android to the latest version available from the Google Play Store or Microsoft\u2019s official update channel.", "If an update is not immediately available, restrict device access to exclude unauthorised local users from launching the Office application.", "Apply least\u2011privilege settings on the device to minimise the potential impact of a privilege escalation should the flaw be triggered.", "Verify that the installed Office version includes the patch by checking the version number against the Microsoft Security Update guide referenced above."], "summary": {"action": "Immediate Patch", "impact": "Local Privilege Escalation"}, "threat_synthesis": {"affected_systems": "Vendors and products affected are Microsoft and Microsoft Office for Android. No specific version identifiers are provided in the CNA data or the description, so the precise affected releases are unknown; all available Office for Android installations may be impacted.\u00a0The official Microsoft Security Response Center reference lists this vulnerability but does not enumerate affected versions.", "description_and_impact": "An integer overflow or wraparound occurs in Microsoft Office for Android that allows an attacker who already has authorized local access to elevate their privileges on the device. The flaw involves improper handling of numeric values (CWE-190) and can result in higher privileges, potentially compromising confidentiality, integrity, or availability of data on the device. The issue is limited to local execution;\u00a0no remote exploitation is described.", "risk_and_exploitability": "The CVSS score of 7.8 categorises the vulnerability as medium\u2011to\u2011high severity. The EPSS score of less than 1% indicates a low probability of current exploitation in the wild, and it is not listed in the CISA KEV catalog, suggesting no widespread exploitation. The only attack vector that can trigger the integer overflow is a local, authorised user who can run the Office application. Given these factors, the risk is significant for organisations that allow local use of Office for Android, but the likelihood of exploitation remains low at present."}}}}, "created": "2026-03-11T11:45:34.736844+00:00", "updated": "2026-03-20T14:34:14.183965+00:00", "vendors": ["microsoft", "microsoft$PRODUCT$office"]}