CVE-2025-54905

High

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

secure@microsoft.com·CWE-822·Published 2025-09-09

CVSS

7.1

EPSS

0.01

KEV

Exploits

cve.orgen

119 chars

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

NVDen

119 chars

Untrusted pointer dereference in Microsoft Office Word allows an unauthorized attacker to disclose information locally.

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	7.1	—	—	CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C
3.1	Secondary	NVD	7.1	1.8	5.2