Lucene search
K

Description of the security update for Office Online Server: October 14, 2025 (KB5002797)

🗓️ 14 Oct 2025 14:00:00Reported by MicrosoftType 
mskb
 mskb
🔗 support.microsoft.com👁 10 Views

Office Online Server security update KB5002797 fixes Excel vulnerabilities; requires the release version.

Related
ReporterTitlePublishedViews
Family
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to data type mixing errors, allowing an attacker to execute arbitrary code.
16 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office and 365 Apps for Enterprise applications relates to the possibility of exploiting memory after it is freed, allowing an attacker to execute arbitrary code.
16 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.
17 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.
17 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to reading data beyond the buffer in memory, allowing an attacker to disclose protected information.
17 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages lies in their ability to exploit memory after it is freed, allowing an attacker to execute arbitrary code.
17 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to reading data beyond the buffer in memory, allowing an attacker to disclose protected information.
20 Oct 202500:00
bdu_fstec
BDU FSTEC
The vulnerability of Microsoft Office, Excel, and 365 Apps for Enterprise packages relates to data type mixing errors, allowing an attacker to execute arbitrary code.
20 Oct 202500:00
bdu_fstec
Circl
CVE-2025-59223
14 Oct 202516:38
circl
Circl
CVE-2025-59224
14 Oct 202516:38
circl
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

14 Oct 2025 14:00Current
7High risk
Vulners AI Score7
CVSS 3.17.8 - 8.4
EPSS0.00612
SSVC
10