THREATOPS
THREAT OPSCVEs › CVE-2026-21514

CVE-2026-21514 — Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability

CISA KEVExploited: confirmedMicrosoft

Microsoft Office Word contains a reliance on untrusted inputs in a security decision vulnerability that could allow an authorized attacker to elevate privileges locally.

Vulnerability details

Exploiting threat actors

Related reporting