CVE-2026-50314 is a critical Microsoft Office use-after-free vulnerability that can let an attacker’s code run on a victim’s computer, even though its CVSS attack vector is marked Local rather than Network. The apparent contradiction comes from two different uses of location: remote code...