CVE-2025-59229

Опубликовано: 14 окт. 2025

Источник: msrc

CVSS3: 5.5

EPSS Низкий

Описание

Microsoft Office Denial of Service Vulnerability

Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally.

FAQ

According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?

An attacker must send the user a malicious file and convince them to open it.

Is the Preview Pane an attack vector for this vulnerability?

Yes, the Preview Pane is an attack vector.

Возможность эксплуатации

Publicly Disclosed

Exploited

Latest Software Release

Exploitation Unlikely

EPSS

Процентиль: 13%

0.00043

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2025-59229

CVSS3: 5.5

nvd

21 день назад

Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally.

GHSA-pv25-8q8x-9236

CVSS3: 5.5

github

21 день назад

Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally.

BDU:2025-13068

CVSS3: 5.5

fstec

22 дня назад

Уязвимость пакетов программ Microsoft Office и 365 Apps for Enterprise, связанная с ошибкой обработки исключительных состояний, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 13%

0.00043

Низкий

5.5 Medium

CVSS3