Microsoft · Office Out-Of-Box Experience · CVE-2025-64677
**Name of the Vulnerable Software and Affected Versions**
Office Out-of-Box Experience (affected versions not specified)
**Description**
An issue exists in Office Out-of-Box Experience related to improper neutralization of input during web page generation, leading to a cross-site scripting condition. This allows an unauthorized attacker to perform spoofing over a network.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.