CVE-2026-32200

Severity

7.8HIGH

EPSS

No EPSS data

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedApr 14

Description

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

▶CVEListV5microsoft/microsoft_office_201919.0.0 — https://aka.ms/OfficeSecurityReleases

▶CVEListV5microsoft/microsoft_powerpoint_201616.0.0 — 16.0.5548.1001

▶CVEListV5microsoft/microsoft_office_ltsc_202116.0.1 — https://aka.ms/OfficeSecurityReleases

▶CVEListV5microsoft/microsoft_office_ltsc_202416.0.0 — https://aka.ms/OfficeSecurityReleases

▶CVEListV5microsoft/microsoft_365_apps_for_enterprise16.0.1 — https://aka.ms/OfficeSecurityReleases

CVEList

Microsoft PowerPoint Remote Code Execution Vulnerability↗2026-04-14

▶

VulDB

Microsoft Office 2019/LTSC 2021/LTSC 2024 PowerPoint use after free↗2026-04-14

▶