Security Vulnerabilities - CVEs Published In July 2025
Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.007
Published
2025-07-08
Trust boundary violation in Visual Studio Code - Python extension allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.008
Published
2025-07-08
Uncontrolled resource consumption in Windows Netlogon allows an unauthorized attacker to deny service over a network.
CVSS Score
7.5
EPSS Score
0.396
Published
2025-07-08
Improper authorization in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
CVSS Score
8.8
EPSS Score
0.018
Published
2025-07-08
Access of resource using incompatible type ('type confusion') in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.008
Published
2025-07-08
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.011
Published
2025-07-08
CVE-2025-49704
Improper control of generation of code ('code injection') in Microsoft Office SharePoint allows an authorized attacker to execute code over a network.
Known exploited
CVSS Score
8.8
EPSS Score
0.596
Published
2025-07-08
Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
8.4
EPSS Score
0.006
Published
2025-07-08
Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally.
CVSS Score
7.8
EPSS Score
0.007
Published
2025-07-08
Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.
CVSS Score
7.0
EPSS Score
0.004
Published
2025-07-08