Vulnerability intelligence
CVE-2026-32190
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
8.4
High
EPSS — Exploit Probability
0.3%
Riskier than 25% of all CVEs
Exploitation
Not in CISA KEV
No federal exploitation record
Remediation
Patch available
Vendor fix published
2 articles across 2 outlets · first covered Apr 14, 2026 · latest Apr 23, 2026
Tracked incidents
Coverage timeline
-
Chinese firm claims AI finds nearly half of Tianfu Cup flawswww.securityweek.com · Apr 23, 2026
-
Microsoft Patch Tuesday April 2026., (Tue, Apr 14th)isc.sans.edu · Apr 14, 2026