cve-2026-45645

CVE-2026-45645 is a Microsoft Office remote code execution vulnerability that has been discussed on WindowsForum.com. Despite its CVSS attack vector being local (AV:L), the vulnerability is classified as remote code execution because the attacker's code can run on the victim's machine remotely, even though the trigger occurs locally when Office processes a malicious file. This distinction is important for understanding the attack model, which is document-based rather than wormable network service exploitation. The tag covers discussions about the technical details of this vulnerability, including the mechanics of exploitation and the implications for security patching and mitigation strategies.