Heap-based buffer overflow in Microsoft Office OneNote allows an unauthorized attacker to execute code locally.
Project Subscriptions
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Tue, 14 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 14 Jul 2026 17:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Heap-based buffer overflow in Microsoft Office OneNote allows an unauthorized attacker to execute code locally. | |
| Title | Microsoft OneNote Remote Code Execution Vulnerability | |
| First Time appeared |
Microsoft
Microsoft 365 Apps Microsoft office 365 Microsoft office Macos 2021 Microsoft office Macos 2024 |
|
| Weaknesses | CWE-122 | |
| CPEs | cpe:2.3:a:microsoft:365_apps:*:*:*:*:enterprise:*:*:* cpe:2.3:a:microsoft:office_365:*:*:*:*:*:macos:*:* cpe:2.3:a:microsoft:office_macos_2021:*:*:*:*:*:long_term_servicing_channel:*:* cpe:2.3:a:microsoft:office_macos_2024:*:*:*:*:*:long_term_servicing_channel:*:* |
|
| Vendors & Products |
Microsoft
Microsoft 365 Apps Microsoft office 365 Microsoft office Macos 2021 Microsoft office Macos 2024 |
|
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: microsoft
Published:
Updated: 2026-07-14T19:41:15.113Z
Reserved: 2026-06-16T15:03:49.681Z
Link: CVE-2026-55133
Updated: 2026-07-14T18:06:57.857Z
No data.
No data.
OpenCVE Enrichment
No data.
Weaknesses