CVE Daily

CVE-2025-49712

Deserialization of untrusted data in Microsoft Office SharePoint allows an autho...

High CVSS 8.8

Overview

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.

CWE: CWE-502 Published: 2025-08-12T18:15:30.183
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 8.8 (HIGH)
  • Detected tags: deserialization (tag impact: MODERATE)

Recommended actions:

  • Avoid untrusted deserialization; prefer safe formats (JSON) and signatures.

Recommended tools

Tags