CVE-2025-59238

Severity

7.8HIGH

EPSS

0.1%

top 82.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedOct 14

Description

Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

▶CVEListV5microsoft/microsoft_office_201919.0.0 — https://aka.ms/OfficeSecurityReleases

▶CVEListV5microsoft/microsoft_powerpoint_201616.0.0 — 16.0.5522.1000

▶CVEListV5microsoft/microsoft_office_ltsc_202116.0.1 — https://aka.ms/OfficeSecurityReleases

▶CVEListV5microsoft/microsoft_office_ltsc_202416.0.0 — https://aka.ms/OfficeSecurityReleases

CVEList

Microsoft PowerPoint Remote Code Execution Vulnerability↗2025-10-14

▶

GHSA

GHSA-wvj6-qg68-cx73: Use after free in Microsoft Office PowerPoint allows an unauthorized attacker to execute code locally↗2025-10-14

▶

Microsoft

Microsoft PowerPoint Remote Code Execution Vulnerability↗2025-10-14

▶