Microsoft-Excel

🟠 High | Source: Microsoft Security Response Center CVE-2026-44817 is a remote code execution vulnerability in Microsoft Excel affecting Microsoft Office for Mac. An attacker exploiting this flaw could execute arbitrary code on a victim’s machine, potentially leading to full system compromise. Microsoft has released security updates and only Mac users running affected Office software need to act. Security Architect’s Take: Ensure macOS endpoints across your organisation have the latest Microsoft Office for Mac updates deployed promptly — prioritise this via your MDM solution (e.g. Intune or Jamf) and verify compliance through your endpoint management tooling. Confirm that Windows and cloud-hosted Office users are unaffected and no additional action is required for those workloads. ...

🟠 High | Source: Microsoft Security Response Center A remote code execution vulnerability (CVE-2026-44818) has been identified in Microsoft Excel for Mac. An attacker who successfully exploits this flaw could execute arbitrary code on a victim’s machine, typically by convincing a user to open a malicious Excel file. Only users running Microsoft Office for Mac are affected; other Office platforms do not require action. Security Architect’s Take: Ensure all macOS endpoints running Microsoft Office are patched immediately via the update released by Microsoft. If you manage a fleet of Macs through Intune or a third-party MDM solution, prioritise deploying this update and validate compliance reporting to confirm coverage before threat actors can weaponise a public proof-of-concept. ...