Security
Headlines
HeadlinesLatestCVEs

Tag

#rce

CVE-2025-47170: Microsoft Word Remote Code Execution Vulnerability

**Are the updates for the Microsoft 365 for Office currently available?** The security update for Microsoft 365 are not immediately available. The updates will be released as soon as possible, and when they are available, customers will be notified via a revision to this CVE information.

Microsoft Security Response Center
#vulnerability#microsoft#rce#Microsoft Office Word#Security Vulnerability
CVE-2025-47172: Microsoft SharePoint Server Remote Code Execution Vulnerability

Improper neutralization of special elements used in an sql command ('sql injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.