Security Updates for Outlook (June 2025)

🗓️ 17 Jun 2025 00:00:00Reported by TenableType

Microsoft Outlook is missing critical security updates for vulnerabilities allowing remote code execution.

Reporter	Title	Published	Views	Family All 39
Information Security Automation	June Microsoft Patch Tuesday	10 Jun 202521:49	–	avleonov
BDU FSTEC	The vulnerability of Microsoft Office packages, Microsoft 365 Apps for Enterprise, and the Microsoft Outlook email client arises from insufficient validation of input data, allowing an attacker to execute arbitrary code.	11 Jun 202500:00	–	bdu_fstec
BDU FSTEC	Vulnerability of Microsoft Office packages and 365 Apps for Enterprise, related to incorrect path name restrictions for restricted access directories, allows attackers to execute arbitrary code.	20 Jun 202500:00	–	bdu_fstec
Circl	CVE-2025-47171	10 Jun 202515:24	–	circl
Circl	CVE-2025-47176	10 Jun 202515:24	–	circl
CNNVD	Microsoft Outlook 输入验证错误漏洞	10 Jun 202500:00	–	cnnvd
CNNVD	Microsoft Outlook 路径遍历漏洞	10 Jun 202500:00	–	cnnvd
CNVD	Microsoft Outlook Code Execution Vulnerability (CNVD-2025-23066)	13 Jun 202500:00	–	cnvd
CNVD	Microsoft Outlook Code Execution Vulnerability (CNVD-2025-23067)	13 Jun 202500:00	–	cnvd
CVE	CVE-2025-47171	10 Jun 202517:02	–	cve

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include("compat.inc");

if (description)
{
  script_id(240116);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2025/06/25");

  script_cve_id("CVE-2025-47171", "CVE-2025-47176");

  script_name(english:"Security Updates for Outlook (June 2025)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft Outlook application installed on the remote host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The Microsoft Outlook application installed on the remote
host is missing a security update. It is, therefore,
affected by the following vulnerability:

  - A remote code execution vulnerability. An attacker can
    exploit this to bypass authentication and execute
    unauthorized arbitrary commands. (CVE-2025-47171, CVE-2025-47176)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  # https://learn.microsoft.com/en-us/officeupdates/microsoft365-apps-security-updates
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5931548c");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released patches to address these issues.

For Office 365, Office 2016 C2R, or Office 2019, ensure automatic
updates are enabled or open any office app and manually perform an
update.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-47176");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/06/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/06/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/06/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:outlook");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows : Microsoft Bulletins");

  script_copyright(english:"This script is Copyright (C) 2025 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("office_installed.nasl", "smb_hotfixes.nasl","ms_bulletin_checks_possible.nasl");
  script_require_keys("SMB/MS_Bulletin_Checks/Possible");
  script_require_ports(139, 445, "Host/patch_management_checks");

  exit(0);
}

include('vcf_extras_office.inc');

var bulletin = 'MS25-06';

var constraints = [
  {'fixed_version':'16.0.18827.20150','channel':'Current'},
  {'fixed_version':'16.0.18730.20220','channel':'Enterprise Deferred','channel_version':'2504'},
  {'fixed_version':'16.0.18623.20298','channel':'Enterprise Deferred','channel_version':'2503'},
  {'fixed_version':'16.0.18526.20416','channel':'Enterprise Deferred'},
  {'fixed_version':'16.0.18526.20416','channel':'First Release for Deferred'},
  {'fixed_version':'16.0.17928.20572','channel':'Deferred','channel_version':'2408'},
  {'fixed_version':'16.0.17328.20820','channel':'Deferred'},
  {'fixed_version':'16.0.18827.20150','channel':'2024 Retail'},
  {'fixed_version':'16.0.18827.20150','channel':'2021 Retail'},
  {'fixed_version':'16.0.18827.20150','channel':'2019 Retail'},
  {'fixed_version':'16.0.18827.20150','channel':'2016 Retail'},
  {'fixed_version':'16.0.17932.20396','channel':'LTSC 2024'},
  {'fixed_version':'16.0.14334.20090','channel':'LTSC 2021'},
  {'fixed_version':'16.0.10417.20020','channel':'2019 Volume'}
];

vcf::microsoft::office_product::check_version_and_report(
  constraints:constraints,
  severity:SECURITY_HOLE,
  bulletin:bulletin,
  subproduct:'Outlook'
);

25 Jun 2025 00:00Current

6.8Medium risk

Vulners AI Score6.8

CVSS 3.17.8

EPSS0.02517

SSVC