CVE-2026-55123
Microsoft PowerPoint Remote Code Execution Vulnerability
Description
Heap-based buffer overflow in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.
In plain language
AI Act nowCVE-2026-55123 is a Microsoft PowerPoint bug that can let attackers run code on your computer if you open a specially made PowerPoint file, so small businesses should act if they use affected Office/PowerPoint versions.
CVE-2026-55123 is a PowerPoint vulnerability involving a buffer overflow (CWE-122/CWE-681) that can be triggered by user interaction when a victim opens a crafted PowerPoint file, enabling local arbitrary code execution in affected Microsoft Office/PowerPoint releases.
What to do now
- Check whether you use an affected Microsoft PowerPoint product/version (including Microsoft 365 Apps, Microsoft Office, Microsoft Office 365 for Mac, Microsoft Office LTSC for Mac 2021, Microsoft Office LTSC for Mac 2024, or Microsoft PowerPoint 2016).
- Update to the fixed version for your product branch (Microsoft 365 Apps/Microsoft Office: install the updates provided via the Office security releases; Microsoft Office 365 for Mac, LTSC for Mac 2021, LTSC for Mac 2024: update to 16.111.26071215; Microsoft PowerPoint 2016: update to 16.0.5561.1000).
- Ensure users are instructed not to open unexpected PowerPoint attachments or files from unknown/untrusted sources until patching is complete.
- After updating, verify the installed Office/PowerPoint build/version matches the fixed versions listed above for your edition.
CVSS Vector Breakdown
AV:LAttack VectorAC:LAttack ComplexityPR:NPrivileges RequiredUI:RUser InteractionS:UScopeC:HConfidentialityI:HIntegrityA:HAvailabilityWeaknesses
Affected Products
Exploitability
Attack Graph
Click technique nodes for MITRE ATT&CK details · drag to pan · Ctrl/⌘ + scroll to zoom, or go fullscreen.
MITRE ATT&CK
1 techniqueReferences
- Microsoft and Adobe Patch Tuesday, July 2026 Security Update Reviewen-us·Qualys Security Blog·
- Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilitiesen·Cisco Talos·
- Microsoft Patch Tuesday July 2026 - The AI Acopolypse is Hereen·SANS Internet Storm Center·
- Microsoft July 2026 Patch Tuesday fixes massive 570 flaws, 3 zero-daysen-us·BleepingComputer·
Unlock Complete Vulnerability Intelligence
Get the full picture for CVE-2026-55123 and every CVE in our database. Create a free account — no credit card required.
Create Free Account