An untrusted pointer dereference flaw in Microsoft Office Word permits an attacker to execute arbitrary code a user’s machine when a malicious Word document is opened. The vulnerability arises when the application incorrectly validates a pointer during normal processing of document data, allowing corrupted memory references to be dereferenced. Successful exploitation would give the attacker local code execution, potentially enabling the compromise of data confidentiality, integrity, and availability on the affected system.

Affected sites include Microsoft 365 Apps for Enterprise, Microsoft Office 2019, Microsoft Office 365 for Mac, Microsoft Office LTSC 2021, Microsoft Office LTSC 2024, Microsoft Office LTSC for Mac 2021, Microsoft Office LTSC for Mac 2024, Microsoft SharePoint Enterprise Server 2016, Microsoft SharePoint Server 2019, Microsoft SharePoint Server Subscription Edition, and Microsoft Word 2016. Version information is not specified in the report, so all current releases in these lines are considered vulnerable until updates are applied.

The CVSS score of 7.8 classifies the flaw as high severity, but exploitation requires an attacker to supply a malicious Word document that the target user opens. The EPSS score is not available and the vulnerability is not listed in the CISA KEV catalog, indicating no confirmed widespread exploitation at present. However the risk remains significant for organizations running unpatched Office software, especially in environments where users routinely download or receive documents from external sources.