VDB
GCVE-110-NCSC-2025-12
GCVE-110-NCSC-2025-12
Advisory PublishedCVSS 7.8/10
Microsoft heeft kwetsbaarheden verholpen in diverse Office producten.
Weaknesses (CWE)
CWE-122Heap-based Buffer OverflowCWE-190Integer Overflow or WraparoundCWE-20Improper Input ValidationCWE-416Use After FreeCWE-693Protection Mechanism FailureCWE-285Improper AuthorizationCWE-822Untrusted Pointer DereferenceCWE-843Access of Resource Using Incompatible Type ('Type Confusion')CWE-908Use of Uninitialized ResourceCWE-269Improper Privilege ManagementCWE-641Improper Restriction of Names for Files and Other ResourcesCWE-502Deserialization of Untrusted DataCWE-426Untrusted Search PathCWE-918Server-Side Request Forgery (SSRF)CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Risk Scores
CVSS 3.1
7.8/10
High · CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| microsoft | microsoft_office_for_universal | — | — |
| microsoft | microsoft_365_apps_for_enterprise | — | — |
| microsoft | microsoft_office_ltsc_for_mac_2024 | — | — |
| microsoft | microsoft_office_2019 | — | — |
| microsoft | microsoft_office_ltsc_2021 | — | — |
| microsoft | microsoft_access_2016__32-bit_edition_ | — | — |
| microsoft | microsoft_outlook_2016 | — | — |
| microsoft | microsoft_access_2016 | — | — |
| microsoft | microsoft_sharepoint_enterprise_server_2016 | — | — |
| microsoft | microsoft_office_for_ios | — | — |
| microsoft | office_online_server | — | — |
| microsoft | microsoft_onenote | — | — |
| microsoft | microsoft_excel_2016 | — | — |
| microsoft | microsoft_office_ltsc_2024 | — | — |
| microsoft | microsoft_purview | — | — |
| microsoft | office_purview | — | — |
| microsoft | microsoft_office_for_mac | — | — |
| microsoft | microsoft_office_2016 | — | — |
| microsoft | microsoft_outlook_for_mac | — | — |
| microsoft | microsoft_autoupdate_for_mac | — | — |
| microsoft | microsoft_office_for_android | — | — |
| microsoft | microsoft_office_ltsc_for_mac_2021 | — | — |
| microsoft | microsoft_sharepoint_server_subscription_edition | — | — |
| microsoft | microsoft_sharepoint_server_2019 | — | — |
Browse GCVE Records
72,664 records in the GCVE database · Updated July 15, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.