vulnerability

Microsoft SharePoint: CVE-2025-47168: Microsoft Word Remote Code Execution Vulnerability

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	Jun 10, 2025	Jun 10, 2025	Oct 14, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

Jun 10, 2025

Added

Jun 10, 2025

Modified

Oct 14, 2025

Description

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.

Solutions

microsoft-sharepoint-sharepoint_2016-kb5002731microsoft-sharepoint-sharepoint_2016-kb5002732microsoft-sharepoint-sharepoint_2019-kb5002727microsoft-sharepoint-sharepoint_2019-kb5002729

References

CVE-2025-47168
https://attackerkb.com/topics/CVE-2025-47168
CWE-416
URL-https://support.microsoft.com/help/5002727
URL-https://support.microsoft.com/help/5002729
URL-https://support.microsoft.com/help/5002731
URL-https://support.microsoft.com/help/5002732

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today