Is Use After Free affected by CVE-2026-32189?

CVE-2026-32189 is a critical memory corruption vulnerability in Microsoft Excel that allows attackers to execute arbitrary code on affected systems when users open malicious spreadsheet files, impacting all major Office deployments across Windows and macOS.

CVE-2026-32189

EUVD-2026-22569 HIGH

2026-04-14 microsoft

GHSA-9p74-5f5x-rgfp

Denial Of Service Use After Free Memory Corruption Microsoft Microsoft 365 Apps For Enterprise Microsoft Excel 2016 Microsoft Office 2019 Microsoft Office Ltsc 2021 Microsoft Office Ltsc 2024 Microsoft Office Ltsc For Mac 2021 Microsoft Office Ltsc For Mac 2024 Office Online Server

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Apr 14, 2026 - 19:22 vuln.today

DescriptionNVD

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

AnalysisAI

Microsoft Excel memory corruption via use-after-free enables arbitrary code execution when victims open malicious spreadsheet files. This vulnerability affects all major Office deployments including Microsoft 365 Apps for Enterprise, Excel 2016, Office 2019, and Office LTSC 2021/2024 for both Windows and macOS, as well as Office Online Server. …

RemediationAI

Within 24 hours: Identify all systems running affected versions (Excel 2016, Office 2019, Office LTSC 2021/2024, Microsoft 365 Apps for Enterprise, and Office Online Server across Windows and macOS) and communicate patch urgency to IT teams. Within 7 days: Deploy available vendor patches from Microsoft Security Response Center to all affected Office installations; prioritize systems with high file-sharing exposure (finance, HR, legal departments). …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

CVE-2026-32189 vulnerability details – vuln.today

Back

CVE-2026-32189

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

RemediationAI

Full analysis requires sign-in

Share

External POC / Exploit Code