CVE-2026-40420
HIGH
NVD
CVSS Score
8.8
Severity
HIGH
Published
May 12, 2026
Vendor
unknown
Description
Improper access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally.
Improper access control in Microsoft Office Click-To-Run allows an authorized attacker to elevate privileges locally.