HIGHVulnerability
Verified
Global

CISA KEV: Microsoft Office — Microsoft Office Remote Code Execution

·Source: CISA KEV

Updated:

Executive Summary

Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially crafted Excel file that includes a malformed object.

Analysis

Microsoft Office Excel contains a remote code execution vulnerability that could allow an attacker to take complete control of an affected system if a user opens a specially crafted Excel file that includes a malformed object. Added to CISA Known Exploited Vulnerabilities catalog on 2026-04-14. Remediation due: 2026-04-28.

Indicators of Compromise (1)

CVE (1)
CVE-2009-0238
NVDMITRE CVE
Source Attribution

Originally published by CISA KEV on Apr 14, 2026. Verified by: CISA.

Related Threats

MEDIUMVulnerability

Friday Squid Blogging: New Giant Squid Video

Pretty fantastic video from Japan of a giant squid eating another squid. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Blog moderation policy.

Schneier on Security
MEDIUMVulnerability

How NIST's Cutback of CVE Handling Impacts Cyber Teams

Industry and ad hoc coalitions appear poised to help fill the gap created by NIST's decision to cut back on CVE data enrichment.

Dark Reading
CRITICALVulnerability

NVD CRITICAL: CVE-2026-40525 — OpenViking prior to commit c7bb167 contains an authentication bypass vulnerabili...

OpenViking prior to commit c7bb167 contains an authentication bypass vulnerability in the VikingBot OpenAPI HTTP route surface where the authentication check fails open when the api_key configuration value is unset or empty. Remote attackers with network access to the exposed service can invoke privileged bot-control functionality without providing a valid X-API-Key header, including submitting at

CVE-2026-40525
NIST NVD