CVE Daily

CVE-2025-49697

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker t...

High CVSS 8.4

Overview

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.

CWE: CWE-122 Published: 2025-07-08T17:15:56.147
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.4 (HIGH)
  • Detected tags: buffer, unauth_access (tag impact: HIGH)

Recommended actions:

  • Enforce authentication/authorization; reduce default endpoint exposure.

Recommended tools

Tags