CVE-2025-24079

Summary

CVE-2025-24079 is a use-after-free vulnerability affecting Microsoft Office Word. An attacker can exploit this flaw to execute arbitrary code locally, gaining unauthorized access to a user's system. This vulnerability can be potentially dangerous as it enables code execution without requiring user interaction or consent, making it an essential patch for organizations and individuals using Microsoft Office Word. Successful exploitation of this vulnerability can lead to significant security risks, including data theft and system compromise. It is recommended that users update their Microsoft Office Word software to the latest version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.