Use After Free Vulnerability in Microsoft Office by Microsoft
CVE-2025-49699
7HIGH
Key Information:
- Vendor
Microsoft
- Status
- Vendor
- CVE Published:
- 8 July 2025
What is CVE-2025-49699?
A use after free vulnerability in Microsoft Office could enable an unauthorized attacker to execute arbitrary code locally. This security flaw may allow the attacker to gain access to sensitive information or compromise system integrity when users open specially crafted documents. Users are advised to apply relevant updates to mitigate the potential impact of this vulnerability.
Affected Version(s)
Microsoft 365 Apps for Enterprise 32-bit Systems 16.0.1
Microsoft Office 2019 32-bit Systems 19.0.0
Microsoft Office LTSC 2021 x64-based Systems 16.0.1