Multiple vulnerabilities in Microsoft Office

説明

Multiple vulnerabilities were found in Microsoft Office. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, obtain sensitive information, gain privileges.

Below is a complete list of vulnerabilities:

1. A remote code execution vulnerability in GDI+ can be exploited remotely to execute arbitrary code.
2. A remote code execution vulnerability in Microsoft Excel can be exploited remotely to execute arbitrary code.
3. A remote code execution vulnerability in Microsoft Office can be exploited remotely to execute arbitrary code.
4. An information disclosure vulnerability in Microsoft Excel can be exploited remotely to obtain sensitive information.
5. An elevation of privilege vulnerability in Microsoft OneDrive for Android can be exploited remotely to gain privileges.
6. A remote code execution vulnerability in Microsoft SharePoint can be exploited remotely to execute arbitrary code.

オリジナルアドバイザリー

• CVE-2025-60724

• CVE-2025-62200
• CVE-2025-62205
• CVE-2025-62216
• CVE-2025-59240
• CVE-2025-62203
• CVE-2025-60722
• CVE-2025-60728
• CVE-2025-60727
• CVE-2025-60726
• CVE-2025-62202
• CVE-2025-62199
• CVE-2025-62204
• CVE-2025-62201

エクスプロイテーション

Public exploits exist for this vulnerability.

関連製品

• Microsoft-Office
• Microsoft-Excel
• Microsoft-SharePoint
• OneDrive
• Microsoft-365

CVEリスト

• CVE-2025-59240
  high
• CVE-2025-60722
  high
• CVE-2025-60724
  critical
• CVE-2025-60726
  high
• CVE-2025-60727
  critical
• CVE-2025-60728
  warning
• CVE-2025-62199
  critical
• CVE-2025-62200
  critical
• CVE-2025-62201
  critical
• CVE-2025-62202
  high
• CVE-2025-62203
  critical
• CVE-2025-62204
  critical
• CVE-2025-62205
  critical
• CVE-2025-62216
  critical

KBリスト

• 5002810
• 5002811
• 5002800
• 5002809
• 5002801
• 5002805
• 5002803

も参照してください

お住まいの地域に広がる脆弱性の統計をご覧ください statistics.securelist.com