CVE-2025-21383

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Feb 11, 2025

Updated: Feb 19, 2025

CWE ID 125

Summary

CVE-2025-21383 is an information disclosure vulnerability affecting Microsoft Excel. Maliciously crafted Excel files can cause the software to reveal sensitive information, potentially leading to unauthorized access or data breaches. Successful exploitation of this vulnerability does not require user interaction, making it particularly dangerous. Microsoft has released a patch to address the issue, and users are encouraged to apply it as soon as possible to protect against potential attacks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3Q60si
https://www.cve.org/CVERecord?id=CVE-2025-21383
https://nvd.nist.gov/vuln/detail/CVE-2025-21383

Back to Vulnerability Database

CVE-2025-21383

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations