vulnerability

Microsoft SharePoint: CVE-2026-20948: Microsoft Word Remote Code Execution Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Jan 13, 2026	Jan 13, 2026	Feb 10, 2026

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jan 13, 2026

Added

Jan 13, 2026

Modified

Feb 10, 2026

Description

Microsoft SharePoint: CVE-2026-20948: Microsoft Word Remote Code Execution Vulnerability

Solutions

microsoft-sharepoint-sharepoint_2016-kb5002827microsoft-sharepoint-sharepoint_2016-kb5002828microsoft-sharepoint-sharepoint_2019-kb5002823microsoft-sharepoint-sharepoint_2019-kb5002825

References

CVE-2026-20948
https://attackerkb.com/topics/CVE-2026-20948
CWE-822
URL-https://support.microsoft.com/help/5002823
URL-https://support.microsoft.com/help/5002825
URL-https://support.microsoft.com/help/5002827
URL-https://support.microsoft.com/help/5002828

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today