Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Untrusted Pointer Dereference Vulnerability (CVE-2026-20948)

Description

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Remediation

References

Related Vulnerabilities

MySQL Other Vulnerability (CVE-2001-1453)

WordPress Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2016-6635)

WordPress Plugin Download Plugin Security Bypass (1.6.0)

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.127.3)

PostgreSQL Other Vulnerability (CVE-2005-0246)

Severity

High

Classification

CVE-2026-20948 CWE-822 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities