PT-2025-42110 · Microsoft · Office Excel

Published

2025-10-14

Updated

2025-12-18

CVE-2025-59225

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Office (affected versions not specified) Microsoft Office Excel (affected versions not specified) Microsoft 365 Apps for Enterprise (affected versions not specified) Microsoft Office Long Term Servicing Channel (affected versions not specified) Microsoft Office Online Server (affected versions not specified)

Description A use-after-free condition exists in Microsoft Office Excel. This occurs when a program attempts to use memory after it has been freed, potentially allowing an attacker to execute arbitrary code. Exploitation of this issue could allow a remote attacker to execute code and impact the system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

BDU:2025-13044

CVE-2025-59225

Affected Products

Office Excel

PT-2025-42110 · Microsoft · Office Excel

CVE-2025-59225

Weakness Enumeration

Related Identifiers

Affected Products

References · 8