Microsoft Office 2016 vulnerabilities

CVE-2026-26110 [HIGH] CWE-843 CVE-2026-26110: Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthor Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-26113 [HIGH] CWE-822 CVE-2026-26113: Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code lo Untrusted pointer dereference in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-21509 [HIGH] CWE-807 CVE-2026-21509: Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attac Reliance on untrusted inputs in a security decision in Microsoft Office allows an unauthorized attacker to bypass a security feature locally.

CVE-2026-20953 [HIGH] CWE-416 CVE-2026-20953: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-20943 [HIGH] CWE-426 CVE-2026-20943: Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally. Untrusted search path in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2026-20952 [HIGH] CWE-416 CVE-2026-20952: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-62554 [HIGH] CWE-843 CVE-2025-62554: Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthor Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-62557 [HIGH] CWE-416 CVE-2025-62557: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-62199 [HIGH] CWE-416 CVE-2025-62199: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-59227 [HIGH] CWE-416 CVE-2025-59227: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-59234 [HIGH] CWE-416 CVE-2025-59234: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-54906 [HIGH] CWE-416 CVE-2025-54906: Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code l Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-54910 [HIGH] CWE-122 CVE-2025-54910: Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code local Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-53740 [HIGH] CWE-416 CVE-2025-53740: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-53731 [HIGH] CWE-416 CVE-2025-53731: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-49696 [HIGH] CWE-122 CVE-2025-49696: Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally. Out-of-bounds read in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-49702 [HIGH] CWE-843 CVE-2025-49702: Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthor Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-49695 [HIGH] CWE-416 CVE-2025-49695: Use after free in Microsoft Office allows an unauthorized attacker to execute code locally. Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVE-2025-47994 [HIGH] CWE-502 CVE-2025-47994: Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate pri Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.

CVE-2025-49697 [HIGH] CWE-122 CVE-2025-49697: Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code local Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.