Haifei Li

**Name of the Vulnerable Software and Affected Versions** Microsoft 365 Apps for Enterprise versions 16.0.1 through 16.0.1 **Description** A use-after-free issue in Microsoft Office Excel allows an unauthorized attacker to execute arbitrary code locally or remotely by tricking a user into opening a malicious Excel file. **Recommendations** Update Microsoft 365 Apps for Enterprise to a version newer than 16.0.1.

**Name of the Vulnerable Software and Affected Versions** Microsoft 365 Apps for Enterprise versions 16.0.1 through 16.0.1 **Description** A use-after-free issue in Microsoft Office Word allows an unauthorized attacker to execute code locally by tricking a user into opening a malicious document. Use-after-free is a memory corruption flaw that occurs when an application continues to use a pointer after it has been freed. **Recommendations** Update Microsoft 365 Apps for Enterprise to a version later than 16.0.1.

**Name of the Vulnerable Software and Affected Versions** Microsoft 365 Apps for Enterprise versions 16.0.1 through 16.0.1 **Description** A use-after-free issue in Microsoft Office Word allows an unauthorized attacker to achieve local remote code execution. This occurs by tricking a user into opening a malicious document that triggers memory corruption during processing. Use-after-free is a condition where a program continues to use a pointer after it has been freed, which can lead to crashes or arbitrary code execution. **Recommendations** Update Microsoft 365 Apps for Enterprise to a version newer than 16.0.1.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Word (affected versions not specified) **Description** A use-after-free condition exists in Microsoft Office Word, potentially allowing an unauthorized attacker to execute code locally. This can occur when opening a specially crafted document. Multiple reports indicate this issue is part of a series of use-after-free flaws addressed in a recent Microsoft patch released in August 2025, alongside fixes for over 100 vulnerabilities affecting Windows and Office. Some of these vulnerabilities are reportedly being exploited in the wild. The issue allows malicious code execution upon opening a compromised document. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Word (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Office Long Term Servicing Channel (affected versions not specified) **Description** A use after free condition exists in Microsoft Office Word. This allows an unauthorized attacker to execute code locally. The issue involves the potential for malicious code execution due to improper memory management. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Word (affected versions not specified) Description: The issue is related to a use after free condition in Microsoft Office Word, which allows an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office (affected versions not specified) Description: The issue is related to a use after free condition in Microsoft Office, which enables an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Word (affected versions not specified) **Description** A use after free condition exists in Microsoft Office Word, potentially allowing an unauthorized attacker to execute code locally. A "use after free" condition occurs when memory is accessed after it has been released, which can lead to arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Word (affected versions not specified) **Description** A heap-based buffer overflow in Microsoft Office Word allows an unauthorized attacker to execute code locally. This issue can be exploited by opening a malicious document. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office PowerPoint (affected versions not specified) Description: The issue is related to a use after free condition in Microsoft Office PowerPoint, allowing an unauthorized attacker to execute code locally. There is no information provided about the estimated number of potentially affected devices worldwide or details about real-world incidents where this issue was exploited. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Outlook (affected versions not specified) **Description** The issue is an out-of-bounds read in Microsoft Office Outlook, which could allow an unauthorized attacker to execute code locally. The issue can be triggered by oversized files in attachments, such as ICS calendars, leading to memory corruption. As of July 2025, updates are available to address this issue. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office Word (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Office (affected versions not specified) Microsoft Office Long Term Servicing Channel (affected versions not specified) Microsoft SharePoint Enterprise Server (affected versions not specified) **Description** This issue involves a use-after-free condition in Microsoft Office Word. Exploitation allows an unauthorized attacker to execute code locally. The vulnerability occurs due to improper memory management, specifically using memory after it has been freed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office (affected versions not specified) Description: The issue is related to a use after free condition in Microsoft Office, which enables an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office versions prior to 2.3 Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Word (affected versions not specified) Microsoft Office Long Term Servicing Channel (affected versions not specified) **Description** The issue involves a use-after-free condition in Microsoft Office Word. Exploitation may allow an unauthorized attacker to execute code locally or, in some cases, remotely execute arbitrary code and impact the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office Word (affected versions not specified) Description: The issue is related to a use after free condition in Microsoft Office Word, which allows an unauthorized attacker to execute code locally. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office versions prior to 2025-24079 Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Word (affected versions not specified) Microsoft Office long term servicing channel (affected versions not specified) **Description** A use-after-free condition exists in Microsoft Office Word. This allows an unauthorized attacker to execute code locally or remotely. The issue may allow an attacker to execute arbitrary code and affect the system. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Microsoft Office (affected versions not specified) **Description** A use after free condition exists in Microsoft Office, allowing an unauthorized attacker to execute code. The issue enables remote attackers to execute arbitrary code and affect the system. The vulnerability involves the potential for using memory after it has been freed, which could allow an attacker to execute code. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Office (affected versions not specified) Description: The issue allows remote attackers to execute arbitrary code and affect the system. This is a remote code execution issue in Microsoft Office. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Windows SmartScreen (affected versions not specified) **Description** The issue is related to errors in the representation of information by the user interface of the Windows SmartScreen component, which is responsible for protection against phishing and malicious software. This can allow a remote attacker to conduct spoofing attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Microsoft Edge (Chromium-based) versions up to 131.0.2903.63 Description: A spoofing vulnerability exists in Microsoft Edge, which is based on Chromium. The vulnerability may allow a remote attacker to conduct spoofing attacks by exploiting errors in the user interface's representation of information. The issue can cause the UI to perform wrong actions. Recommendations: For versions up to 131.0.2903.63, upgrade the affected component immediately to resolve the issue. At the moment, there is no information about additional mitigation measures for this vulnerability.