8 matches found
VulnCheck KEV: CVE-2025-47165
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
Exploit Title: Microsoft Excel 2024 Use after free - Remote Code Execution RCE Author: nu11secur1ty Date: 06/24/2025 Vendor: Microsoft Software: https://www.microsoft.com/en/microsoft-365/excel?market=af Reference: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47165 CVE:...
Security Updates for Microsoft Excel Products (June 2025)
The Microsoft Excel Products are missing a security update. It is, therefore, affected by the following vulnerability: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2025-47165, CVE-2025-47174 Note th...
CVE-2025-47165
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...
CVE-2025-47165
CVE-2025-47165 is a Microsoft Excel/Office remote code execution vulnerability attributed to a use-after-free in Excel. Connected sources describe an attacker leveraging a crafted DOCM delivery to compel a user to execute code, enabling local RCE. The CVE is tracked in Microsoft’s June 2025 secur...
CVE-2025-47165
creationtimestamp| type| source ---|---|--- 2025-06-10 15:24:53+00:00| seen| https://www.thezdi.com/blog/2025/6/10/the-june-2025-security-update-review 2025-06-10 19:31:27+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17983 2025-06-26 05:46:01+00:00| seen|...
Security Updates for Microsoft Office Online Server (June 2025)
The Microsoft Office Online Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands...
Security Updates for Microsoft Excel Products (June 2025)
The Microsoft Excel Products are missing a security update. They are, therefore, affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. Note that Nessus has not tested for this issue but has instead...