Volerion logoVolerion
Volerion logoVolerion

Microsoft Excel Out-of-Bounds Read Vulnerability Allowing Information Disclosure

Vulnerability

A vulnerability allowing out-of-bounds read has been identified in Microsoft Office Excel. This issue could enable an unauthorized attacker to locally disclose information by reading small portions of heap memory. The vulnerability affects multiple versions of Excel, including Excel 2016 (both 32-bit and 64-bit editions), Microsoft Office LTSC 2021 (32-bit and 64-bit editions), Microsoft Office LTSC 2024 (32-bit and 64-bit editions), Microsoft Office 2019 (32-bit and 64-bit editions), Microsoft 365 Apps for Enterprise (32-bit and 64-bit systems), and Office Online Server.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure.

Remediation

Users can download the security update for this vulnerability through the Microsoft Update Catalog. For Office Online Server, the security update is also available via the Microsoft Update Catalog.

Added: Nov 11, 2025, 7:13 PM
Updated: Nov 11, 2025, 7:13 PM

Vulnerability Rating

Custom Algorithm
spread
8.4
impact
2.5
exploitability
4.4
remediation
7.7
relevance
1.0
threat
0.0
urgency
2.9
incentive
0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.