CVE-2025-64677 | Microsoft Office Out-of-Box Experience cross site scripting

Inserito da Angelo Barbosa | Dic 19, 2025 | CVE

A vulnerability classified as problematic has been found in Microsoft Office Out-of-Box Experience. The impacted element is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-64677. The attack may be initiated remotely. There is no available exploit.

This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

CVE-2025-64677 | Microsoft Office Out-of-Box Experience cross site scripting

Post correlati

CVE-2025-26363 | Nozomi Q-Free MaxTime up to 2.11.0 HTTP routes.lua missing authentication

CVE-2024-25662 | Oxygen XML Web Author/Content Fusion cross site scripting (SYNC-2024-020601)

CVE-2024-34472 | HSC Mailinspector up to 5.2.18 POST Request mliRealtimeEmails.php ordemGrid sql injection

CVE-2024-54097 | Huawei HarmonyOS/EMUI HiView Module external control of system or configuration setting