CNNVD-202601-2041 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2041

CVE-2026-20953

  • CNNVD Published: 2026-01-13

Description (Chinese)

Microsoft Office是美国微软(Microsoft)公司的一款办公软件套件产品。该产品常用组件包括Word、Excel、Access、Powerpoint、FrontPage等。 Microsoft Office存在资源管理错误漏洞。攻击者利用该漏洞可以远程执行代码。以下产品和版本受到影响:Microsoft Office 2019 for 64-bit editions,Microsoft Office 2019 for 32-bit editions,Microsoft 365 Apps for Enterprise for 64-bit Systems,Microsoft 365 Apps for Enterprise for 32-bit Systems,Microsoft Office LTSC 2024 for 32-bit editions,Microsoft Office LTSC 2021 for 32-bit editions,Microsoft Office LTSC 2021 for 64-bit editions,Microsoft Office LTSC for Mac 2021,Microsoft Office LTSC 2024 for 64-bit editions,Microsoft Office LTSC for Mac 2024,Microsoft Office 2016 (32-bit edition),Microsoft Office 2016 (64-bit edition)。

Description (English)

Microsoft Office is an office software package product for Microsoft (USA). Common components of the product include Word, Excel, Access, PowerPoint, FrontPage, etc. Microsoft Office has an error in resource management. The attackers used the loophole to implement the code remotely. The following products and versions have been affected: Microsoft Office 2019 for 64-bit effects, Microsoft Office 2019 for 32-bit effects, Microsoft Apps for Enterprise 64-bit Systems, Microsoft Apps for Enterprise 32-bit Systems, Office LTSC 2024 for 32-bit effects, Microsoft Office LTSC 2021 for 32-bit effects, Microsoft Office LTSC 2021 for 32-bit effects, Microsoft Liechtenstein 2021 for 2016 (32-bit condition), Microsoft Office 2021 for 64-bit applications, Microsoft Office Ltds for Office Ltd. 2021 for Mac 2021, Microsoft Office LTSC 2024 for 64-bit opinions, Microsoft Office Liechtenstein for 2024, Office Office 2016 (32-bit condition), Microsoft Office Office Office (2016)

Hazard Level

Medium

Vulnerability Type

资源管理错误

Affected Vendor

微软

Published

2026-01-13

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20953

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-20953

Share on: