PT-2025-36871 · Microsoft · Office Word+1

Jq0904

Published

2025-09-09

Updated

2025-09-15

CVE-2025-54905

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Microsoft Office Word (affected versions not specified)

Description: An untrusted pointer dereference exists in Microsoft Office Word, potentially allowing an unauthorized attacker to disclose information locally. The vulnerability enables attackers to obtain sensitive information and affect the system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Untrusted Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-822

Related Identifiers

BDU:2025-11030

CVE-2025-54905

Affected Products

Office Word

Sharepoint Server

PT-2025-36871 · Microsoft · Office Word+1

CVE-2025-54905

Weakness Enumeration

Related Identifiers

Affected Products

References · 8