CVE-2025-27745

Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

CVSS

No CVSS.

References

Link	Resource
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27745	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:office:2016:::::::*
	cpe:2.3:a:microsoft:office:2019:::::::*
	cpe:2.3:a:microsoft:365_apps:-::::enterprise:::
	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::macos::
	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::-::
	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2024:::::-::
	cpe:2.3:a:microsoft:office_long_term_servicing_channel:2024:::::macos::

History

09 Jul 2025, 13:55

Type	Values Removed	Values Added
First Time		Microsoft office Microsoft Microsoft 365 Apps Microsoft office Long Term Servicing Channel
References	~~() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27745 -~~	() https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27745 - Vendor Advisory
CPE		cpe:2.3:a:microsoft:365_apps:-::::enterprise::: cpe:2.3:a:microsoft:office:2019:::::::* cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::-:: cpe:2.3:a:microsoft:office_long_term_servicing_channel:2024:::::-:: cpe:2.3:a:microsoft:office_long_term_servicing_channel:2021:::::macos:: cpe:2.3:a:microsoft:office:2016:::::::* cpe:2.3:a:microsoft:office_long_term_servicing_channel:2024:::::macos::

09 Apr 2025, 20:03

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.8~~	v2 : unknown v3 : unknown
CWE	~~CWE-416~~

08 Apr 2025, 18:16

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-04-08 18:16

Updated : 2025-07-09 13:55

NVD link : CVE-2025-27745

Mitre link : CVE-2025-27745

JSON object : View

Products Affected

microsoft

CWE

No CWE.