Volerion logoVolerion
Volerion logoVolerion

Microsoft Office Out-of-Bounds Read Vulnerability Allowing Local Code Execution

Vulnerability

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office. This issue could enable an unauthorized attacker to execute code locally. The vulnerability is present in several Office products, including different editions of Microsoft Office 2016, Office 2019, Office 2021, Office LTSC 2021, Office LTSC 2024, and Office for Android.

Impact

Exploitation of this vulnerability could lead to remote code execution, allowing an attacker to execute arbitrary code on the affected system.

Remediation

Security updates are available for Microsoft Office 2016, Office 2019, Office 2021, and Microsoft 365 Apps for Enterprise. For Microsoft Office LTSC for Mac 2021 and 2024, security updates will be released as soon as possible. Instructions for downloading the security updates are available on the Microsoft Office Update Guide.

Added: Jul 8, 2025, 7:47 PM
Updated: Jul 8, 2025, 7:47 PM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
7.5
exploitability
4.4
remediation
7.7
relevance
0.2
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.