Primary

Context

Microsoft Excel Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability has been identified in Microsoft Office Excel. This issue arises from the use of uninitialized resources, allowing an unauthorized attacker to execute code on the local machine. The vulnerability affects several different versions and editions of Microsoft Excel, including the 2024 and 2021 LTSC versions for both Mac and Windows, as well as Microsoft Office 2019 and Microsoft 365 Apps for Enterprise.

Impact

Exploitation of this vulnerability allows for remote code execution on the affected system.

Remediation

Users can apply the security update available through the Microsoft Update Catalog or via the Click-to-Run service, depending on their version of Microsoft Office.

Added: Sep 1, 2025, 7:22 PM

Updated: Sep 1, 2025, 7:22 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

10.0

exploitability

4.4

remediation

0.0

relevance

0.4

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Microsoft Excel Remote Code Execution Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating