Microsoft releases December 2019 Office security updates, with security updates for 36 vulnerabilities, 7 of them classified as Critical and one zero-day privilege elevation vulnerability in Win32k actively exploited in the wild. Microsoft assigned the remote code execution vulnerabilities of ‘Important’ given that they could allow potential attackers to execute arbitrary code after successful exploitation of vulnerable Windows devices. The security updates are available via the Download Center and the Microsoft Update platform, with more info for each of them available after clicking the linked knowledge base articles from below.
Source: https://www.bleepingcomputer.com/news/microsoft/microsoft-office-december-security-updates-fix-remote-execution-bugs/