CNNVD-202507-1123 Information
CNNVD ID
CNNVD-202507-1123
Related CVE
- CNNVD Published: 2025-07-08
Description (Chinese)
Microsoft Word是美国微软(Microsoft)公司的一套Office套件中的文字处理软件。 Microsoft Word存在资源管理错误漏洞。攻击者利用该漏洞可以远程执行代码。以下产品和版本受到影响:Microsoft Office 2019 for 32-bit editions,Microsoft Office 2019 for 64-bit editions,Microsoft 365 Apps for Enterprise for 32-bit Systems,Microsoft 365 Apps for Enterprise for 64-bit Systems,Microsoft Office LTSC 2021 for 64-bit editions,Microsoft Office LTSC 2021 for 32-bit editions,Microsoft Office LTSC 2024 for 32-bit editions,Microsoft Office LTSC 2024 for 64-bit editions,Microsoft Word 2016 (64-bit edition)。
Description (English)
Microsoft Word is the word-processing software in an Office package of Microsoft (USA). Microsoft Word has an error in resource management. The attackers used the loophole to implement the code remotely. The following products and versions have been affected: Microsoft Office 2019 for 32-bit effects, Microsoft Office 2019 for 64-bit effects, Microsoft Apps for Enterprise 32-bit Systems, Microsoft Apps for Enterprise for 64-bit Systems, Microsoft Office LTSC 2021 for 64-bit applications, Microsoft Office LTSC 2021 for 32-bit effects, Microsoft Office LTSC 2021 for 32-bit effects, Microsoft Office LTSC 2024 for 32-bit applications, Microsoft Office LTSC 2024 for 32-bit applications, Microsoft Office LTSC 2024 for 64-bit assessments, Microsoft Word 2016 (64-bit condition).
Hazard Level
Medium
Vulnerability Type
资源管理错误
Affected Vendor
微软
Published
2025-07-08
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49700
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49700
Share on: