CVE-2026-26144

Publication date

2026-03-10 17:05:23

Family

microsoft

State

PUBLISHED

Description

Improper neutralization of input during web page generation (cross-site scripting) in Microsoft Office Excel allows an unauthorized attacker to disclose information over a network.