Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Project Subscriptions

Vendors Products
Microsoft Subscribe
365 Apps Subscribe
Office 2016 Subscribe
Office 2019 Subscribe
Office 2021 Subscribe
Office 2024 Subscribe
Office Long Term Servicing Channel Subscribe
Office Macos 2021 Subscribe
Office Macos 2024 Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2025-17761 Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Fri, 13 Feb 2026 19:30:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft office 2016
Microsoft office 2019
Microsoft office 2021
Microsoft office 2024
Microsoft office Macos 2021
Microsoft office Macos 2024
CPEs cpe:2.3:a:microsoft:365_apps:*:*:*:*:enterprise:*:*:*
cpe:2.3:a:microsoft:office:*:*:android:*:*:*:*:*
cpe:2.3:a:microsoft:office_2016:*:*:*:*:*:*:x86:*
cpe:2.3:a:microsoft:office_2019:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_2021:*:*:*:*:long_term_servicing_channel:*:*:*
cpe:2.3:a:microsoft:office_2024:*:*:*:*:long_term_servicing_channel:*:*:*
cpe:2.3:a:microsoft:office_macos_2021:*:*:*:*:*:long_term_servicing_channel:*:*
cpe:2.3:a:microsoft:office_macos_2024:*:*:*:*:*:long_term_servicing_channel:*:*
Vendors & Products Microsoft office 2016
Microsoft office 2019
Microsoft office 2021
Microsoft office 2024
Microsoft office Macos 2021
Microsoft office Macos 2024

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00061}

epss

{'score': 0.00067}


Wed, 09 Jul 2025 14:00:00 +0000

Type Values Removed Values Added
First Time appeared Microsoft
Microsoft 365 Apps
Microsoft office
Microsoft office Long Term Servicing Channel
CPEs cpe:2.3:a:microsoft:365_apps:-:*:*:*:enterprise:*:*:*
cpe:2.3:a:microsoft:office:-:*:*:*:*:android:*:*
cpe:2.3:a:microsoft:office:2016:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office:2019:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:office_long_term_servicing_channel:2024:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft 365 Apps
Microsoft office
Microsoft office Long Term Servicing Channel

Tue, 10 Jun 2025 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Tue, 10 Jun 2025 17:15:00 +0000

Type Values Removed Values Added
Description Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
Title Microsoft Office Remote Code Execution Vulnerability
Weaknesses CWE-641
References
Metrics cvssV3_1

{'score': 8.4, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C'}


Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published:

Updated: 2026-02-13T19:13:21.329Z

Reserved: 2025-05-14T14:13:13.463Z

Link: CVE-2025-47953

cve-icon Vulnrichment

Updated: 2025-06-10T18:22:52.089Z

cve-icon NVD

Status : Analyzed

Published: 2025-06-10T17:24:01.917

Modified: 2025-07-09T13:32:18.977

Link: CVE-2025-47953

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses