CVE-2025-21364
CVSS 3.1 Score 7.8 of 10 (high)
Details
Summary
CVE-2025-21364 is a Microsoft Excel Security Feature Bypass vulnerability that allows an attacker to bypass security restrictions in Microsoft Excel. This vulnerability can lead to the execution of malicious code, potentially compromising the affected system. Attackers can exploit this issue by luring a user to open a specially crafted Excel file. Once opened, the bypassed security feature enables macros, allowing the attacker to run their malicious code. Microsoft has released a patch to address this issue, and users are strongly encouraged to apply it as soon as possible to protect against potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.