wid-sec-w-2026-0659 · Published 2026-03-10 · View on BSI CERT-Bund ↗

Microsoft Office and SharePoint Produkte: Multiple Vulnerabilities

CVSS 8.8 HIGH

Risk Summary

Out-of-bounds read in Microsoft Graphics Component allows an unauthorized attacker to disclose information locally.

CVEs (13)

CVE-2026-24285 CVE-2026-25180 CVE-2026-26105 CVE-2026-26106 CVE-2026-26107 CVE-2026-26108 CVE-2026-26109 CVE-2026-26110 CVE-2026-26112 CVE-2026-26113 CVE-2026-26114 CVE-2026-26134 CVE-2026-26144

Affected Vendors

Microsoft

Affected Products (10)

Microsoft · Excel 2016

Microsoft · Office 2019

Microsoft · Office for Android

Microsoft · Office LTSC for Mac 2021

Microsoft · Office LTSC 2021

Microsoft · Office LTSC 2024

Microsoft · Office LTSC for Mac 2024

Microsoft · Office 2016

Microsoft · SharePoint Enterprise Server 2016

Microsoft · SharePoint Server Subscription Edition

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more