4293 matches found
CVE-2025-53735
CVE-2025-53735 is a Microsoft Excel remote code execution vulnerability caused by a use-after-free condition in Excel. The issue allows an attacker to run arbitrary code locally when a user opens a specially crafted Excel file. Microsoft has released security updates to address this vulnerability...
CVE-2025-53733
CVE-2025-53733 affects Microsoft Word (Office). The issue is caused by incorrect conversion between numeric types in Word, enabling a local attacker to execute arbitrary code when a specially crafted document is opened or when Preview Pane is used, per vendor descriptions and multiple security pa...
CVE-2025-53734
CVE-2025-53734 is a Microsoft Office Visio remote code execution vulnerability caused by a use-after-free condition. The available sources confirm an issue in Visio that allows an attacker to execute code locally, with the impact described as arbitrary code execution on the affected machine. The ...
CVE-2025-53731
CVE-2025-53731 is a Microsoft Office remote code execution vulnerability described as a use-after-free in Microsoft Office that could allow an attacker to execute arbitrary code locally. Affected products include the Microsoft Office suite (Office on Windows, including Word/Excel/PowerPoint/Share...
CVE-2025-53152
CVE-2025-53152 is a local-use-after-free vulnerability in the Desktop Window Manager (DWM) of Windows that enables an authenticated attacker to execute code locally. The CVSS v3.1 score indicates local access with low privileges and no user interaction, but high impact to confidentiality, integri...
CVE-2025-50176
CVE-2025-50176 is a Windows graphics kernel RCE due to a type confusion in the DirectX/Graphics Kernel. Affected: core graphics components in Windows. Impact: local code execution with high confidentiality/integrity/availability risk (CVSS 3.1, 7.8). Public details in connected docs show Windows ...
CVE-2025-53773
CVE-2025-53773 describes a command-injection-based remote code execution risk in GitHub Copilot and Visual Studio. The root cause is improper neutralization of elements in prompts/config that Copilot can read and act on, potentially allowing an attacker to cause Copilot to modify project configur...
CVE-2025-53761
Summary (based on provided documents): CVE-2025-53761 is a use-after-free vulnerability in Microsoft Office PowerPoint that can allow an attacker with local access to execute code locally. The vulnerability is associated with PowerPoint and is addressed by the August 2025 security update (KB50027...
CVE-2025-53759
CVE-2025-53759 is a Microsoft Excel remote code execution vulnerability described as caused by the use of an uninitialized resource in Excel. The issue enables a local attacker to run arbitrary code when a specially crafted file is opened, with a CVSSv3.1 base score of 7.8 (High) and impact on co...
CVE-2025-53730
CVE-2025-53730 is a Use-After-Free vulnerability in Microsoft Office Visio that allows local code execution when exploited via crafted input. The core issue is a use-after-free in Visio components leading to arbitrary code execution on the affected system. Multiple connected sources corroborate t...
Microsoft Excel Remote Code Execution Vulnerability
Heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Microsoft Office Visio Remote Code Execution Vulnerability
Use after free in Microsoft Office Visio allows an unauthorized attacker to execute code locally...
Microsoft Office Remote Code Execution Vulnerability
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
Microsoft Office Remote Code Execution Vulnerability
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...
Windows Hyper-V Remote Code Execution Vulnerability
Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally...
Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Microsoft Office Remote Code Execution Vulnerability
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally...
Microsoft Word Remote Code Execution Vulnerability
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...
Microsoft Word Remote Code Execution Vulnerability
Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally...
Microsoft Word Remote Code Execution Vulnerability
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...