CVE-2025-29979

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Microsoft Office Excel (affected versions not specified)

Description: A heap-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally. This issue enables remote attackers to execute arbitrary code and affect the system. It is recommended to apply the May 2025 patch to resolve the issue.

Recommendations: Apply the May 2025 patch to resolve the issue. As a temporary workaround, consider restricting the use of Microsoft Office Excel until the patch is applied.

Fix

RCE

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-122

Related Identifiers

BDU:2025-05591

CVE-2025-29979

Affected Products

Office Excel

Office

CVE-2025-29979

Weakness Enumeration

Related Identifiers

Affected Products

References · 9