CVE-2025-30377

Name of the Vulnerable Software and Affected Versions Microsoft Office versions prior to the May 2025 updates

Description The issue is related to a use after free vulnerability in Microsoft Office, allowing an unauthorized attacker to execute code locally. This vulnerability can be exploited by remote attackers to execute arbitrary code and affect the system. Previewing an email in Outlook could potentially trigger arbitrary code execution.

Recommendations To resolve the issue, patch Microsoft Office with the May 2025 updates to stay safe. As a temporary workaround, consider avoiding previewing emails in Outlook until the patch is applied. Restricting access to potentially vulnerable components of Microsoft Office may also help minimize the risk of exploitation.