General-Purpose System Vulnerabilities
Vulnerabilities related to traditional IT systems, servers, and desktop applications.
| CVE ID | Description | Severity | Published | Type |
|---|---|---|---|---|
| CVE-2026-20949 | Improper access control in Microsoft Office Excel allows an unauthorized attacker to bypass a security feature locally. | High (7.8) | 2026-01-13 | General-Purpose |
| CVE-2026-20948 | Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally. | High (7.8) | 2026-01-13 | General-Purpose |
| CVE-2026-20947 | Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint all… | High (8.8) | 2026-01-13 | General-Purpose |
| CVE-2026-20946 | Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally. | High (7.8) | 2026-01-13 | General-Purpose |
| CVE-2026-20944 | Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally. | High (8.4) | 2026-01-13 | General-Purpose |