Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-47994

Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.

2025-07-08T17:15:41.020

2025-07-15T14:09:43.957

Analyzed

CVSSv3.1: 7.8 (HIGH)

Type	Vendor	Product	Version/Range	Vulnerable?
Application	microsoft	365_apps	-	Yes
Application	microsoft	365_apps	-	Yes
Application	microsoft	office	2016	Yes
Application	microsoft	office	2016	Yes
Application	microsoft	office	2019	Yes
Application	microsoft	office	2019	Yes
Application	microsoft	office_long_term_servicing_channel	2021	Yes
Application	microsoft	office_long_term_servicing_channel	2021	Yes
Application	microsoft	office_long_term_servicing_channel	2024	Yes
Application	microsoft	office_long_term_servicing_channel	2024	Yes
Application	microsoft	sharepoint_enterprise_server	2016	Yes