CVE-2026-45649

⚠️ high

🔍 Scan for this CVE

Improper access control in Office for Android allows an unauthorized attacker to perform spoofing locally.

CVSS Score

7.1

High

EPSS Score

0.4

Exploit Probability

Published Date

2026-06-09

First Seen: 2026-06-10

This CVE is Moderate Risk - more severe than 53.3% of all 329,456 vulnerabilities in our database.

#153,866

Above average severity

Severity Percentile

🔍 Exploitation Status

None

No known exploits

⚙️ Automatable

Requires human interaction

💥 Technical Impact

Total

Complete system compromise possible

SSVC data provided by CISA

Last Modified 2026-06-19

Source NVD 🔗

CVSS Vector 3.1 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

CWE IDs (Weakness Types)

CWE-284

📦 Affected Products 3

Vendor	Product	Status	Affected Versions
microsoft	excel	Affected	v-
microsoft	powerpoint	Affected	v-
microsoft	word	Affected	v-

Vendor Advisory

CVE ID	Severity	CVSS	EPSS	Summary	Published
CVE-2026-44803	⚠️ high	7.8	0.4	Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.	2026-06-09
CVE-2026-44812	⚠️ high	7.8	0.4	Integer overflow or wraparound in Windows Win32K - GRFX allows an unauthorized attacker to execute code locally.	2026-06-09
CVE-2026-44817	⚠️ high	7.8	0.4	Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally...	2026-06-09
CVE-2026-44818	⚠️ high	7.0	0.3	Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally...	2026-06-09
CVE-2026-44820	⚠️ high	7.8	0.4	Integer underflow (wrap or wraparound) in Microsoft Office Excel allows an unauthorized attacker to execute code locally...	2026-06-09
CVE-2026-44822	⚠️ high	8.2	0.5	Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.	2026-06-09

These CVEs affect the same products