CVE-2025-59229Uncaught Exception in Microsoft 365 Apps FOR Enterprise

CWE-248Uncaught Exception4 documents4 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 94.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Microsoft 365 Apps FOR EnterpriseMicrosoft Office Ltsc 2024Microsoft Office Long Term Servicing Channel
Timeline
PublishedOct 14

Description

Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

CVEListV5microsoft/microsoft_office_ltsc_202416.0.0https://aka.ms/OfficeSecurityReleases
CVEListV5microsoft/microsoft_365_apps_for_enterprise16.0.1https://aka.ms/OfficeSecurityReleases

🔴Vulnerability Details

2
CVEList
Microsoft Office Denial of Service Vulnerability2025-10-14
GHSA
GHSA-pv25-8q8x-9236: Uncaught exception in Microsoft Office allows an unauthorized attacker to deny service locally2025-10-14

📋Vendor Advisories

1
Microsoft
Microsoft Office Denial of Service Vulnerability2025-10-14
CVE-2025-59229 — Uncaught Exception in Microsoft | cvebase