Heap-Based Buffer Overflow in Microsoft Teams by Microsoft
CVE-2025-53783

7.5HIGH

Key Information:

Vendor: Microsoft
Status: Teams For D365 Remote Assist Hololens; Teams Panel; Teams Phone; Teams For D365 Guides Hololens
Vendor: CVE Published:; 12 August 2025

What is CVE-2025-53783?

A heap-based buffer overflow vulnerability in Microsoft Teams allows unauthorized attackers to execute arbitrary code over a network. This security flaw presents significant risks to user data and system integrity, as it can potentially be exploited by sending specially crafted requests to the application. Proper mitigation measures should be enforced to safeguard against such vulnerabilities.

Affected Version(s)

Microsoft Teams for Android Unknown 1.0.0 < 1416/1.0.0.2025102802

Microsoft Teams for Desktop Unknown 1.0.0 < 25122.1415.3698.6812

Microsoft Teams for iOS Unknown 2.0.0 < 7.10.1 (100772025102901)

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE...

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2025
Vulnerability Reserved
Jul 9, 2025