7.8
CVE-2025-54904 - Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-54903 - Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-54902 - Microsoft Excel Remote Code Execution Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-54899 - Microsoft Excel Remote Code Execution Vulnerability
Free of memory not on the heap in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-54898 - Microsoft Excel Remote Code Execution Vulnerability
Out-of-bounds read in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
8.8
CVE-2025-54897 - Microsoft SharePoint Remote Code Execution Vulnerability
Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
7.8
CVE-2025-54896 - Microsoft Excel Remote Code Execution Vulnerability
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
7.8
CVE-2025-54895 - SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege Vulnerability
Integer overflow or wraparound in Windows SPNEGO Extended Negotiation allows an authorized attacker to elevate privileges locally.
7.8
CVE-2025-54894 - Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
7.8
CVE-2025-54111 - Windows UI XAML Phone DatePickerFlyout Elevation of Privilege Vulnerability
Use after free in Windows UI XAML Phone DatePickerFlyout allows an authorized attacker to elevate privileges locally.