Fixed Intel

CISA Known Exploited Vulnerability

This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.

Remediation Deadline: Mar 3, 2026

High
CISA KEV

CVE-2026-21514

MicrosoftOffice

Microsoft Office Word contains a reliance on untrusted inputs in a security decision vulnerability that could allow an authorized attacker to elevate privileges locally.

Required Action

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-21514 ; https://nvd.nist.gov/vuln/detail/CVE-2026-21514

Vulnerability Overview

Severity
High
CISA KEV
Yes
Ransomware
Unknown
Published
Feb 10, 2026
KEV Added
Feb 10, 2026
Due Date
Mar 3, 2026
Related Articles
0

Vendor

Microsoft

Office