cbcvebase.
CVE-2025-24075
published 2025-03-11

CVE-2025-24075: Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Affected

24 ranges
VendorProductVersion rangeFixed in
microsoftexcel
microsoftmicrosoft_365_apps_for_enterprise>= 16.0.1 < https://aka.ms/OfficeSecurityReleaseshttps://aka.ms/OfficeSecurityReleases
microsoftmicrosoft_excel_2016>= 16.0.0.0 < 16.0.5491.100016.0.5491.1000
microsoftmicrosoft_office_2019>= 19.0.0 < https://aka.ms/OfficeSecurityReleaseshttps://aka.ms/OfficeSecurityReleases
microsoftmicrosoft_office_ltsc_2021>= 16.0.1 < https://aka.ms/OfficeSecurityReleaseshttps://aka.ms/OfficeSecurityReleases
microsoftmicrosoft_office_ltsc_2024>= 16.0.0 < https://aka.ms/OfficeSecurityReleaseshttps://aka.ms/OfficeSecurityReleases
microsoftmicrosoft_office_ltsc_for_mac_2021>= 16.0.1 < 16.95.2503092816.95.25030928
microsoftmicrosoft_office_ltsc_for_mac_2024>= 16.0.0 < 16.95.2503092816.95.25030928
microsoftoffice
microsoftoffice_long_term_servicing_channel
microsoftoffice_long_term_servicing_channel
microsoftoffice_online_server>= 16.0.0.0 < 16.0.10416.2007316.0.10416.20073
msrcmicrosoft_365_apps_for_enterprise_for_32-bit_systems
msrcmicrosoft_365_apps_for_enterprise_for_64-bit_systems
msrcmicrosoft_excel_2016
msrcmicrosoft_office_2019_for_32-bit_editions
msrcmicrosoft_office_2019_for_64-bit_editions
msrcmicrosoft_office_ltsc_2021_for_32-bit_editions
msrcmicrosoft_office_ltsc_2021_for_64-bit_editions
msrcmicrosoft_office_ltsc_2024_for_32-bit_editions
msrcmicrosoft_office_ltsc_2024_for_64-bit_editions
msrcmicrosoft_office_ltsc_for_mac_2021
msrcmicrosoft_office_ltsc_for_mac_2024
msrcoffice_online_server