CVE-2026-21514: Microsoft Office Word Reliance on Untrusted Inputs in a

Microsoft Office Word Reliance on Untrusted Inputs in a Security Decision Vulnerability. Microsoft Office Word contains a reliance on untrusted inputs in a security decision vulnerability that could allow an authorized attacker to elevate privileges locally.

• CISA KEV-listed (remediation due 2026-03-03)
• EPSS 5.4% (90.3% percentile)

Browse the CVE database

Read the full analysis on IntelFusions