Skip to content

TheWindowsUpdate.com

Opinions, tips, and news orbiting Microsoft

Search for:

Primary menu

Home
About TheWindowsUpdate.com

CVE-2025-64677 Office Out-of-Box Experience Spoofing Vulnerability

Posted on December 18, 2025 by Syndicated News — No Comments ↓

This post has been republished via RSS; it originally appeared at: MSRC Security Update Guide.

Improper neutralization of input during web page generation ('cross-site scripting') in Office Out-of-Box Experience allows an unauthorized attacker to perform spoofing over a network.

This entry was posted in Republished Content by Syndicated News. Bookmark the permalink.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Comment *

Name *

Email *

Website

Δ

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Post navigation

← Previous Previous post: CVE-2025-64675 Azure Cosmos DB Spoofing Vulnerability

Next → Next post: CVE-2025-64676 Microsoft Purview eDiscovery Remote Code Execution Vulnerability

Primary Sidebar Widget Area

Search for:

Recent Posts

CVE-2024-7883 CMSE secure state may leak from stack to floating-point registers
CVE-2025-38476 rpl: Fix use-after-free in rpl_do_srh_inline().
CVE-2025-38474 usb: net: sierra: check for no status endpoint
CVE-2025-38473 Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb()
CVE-2025-38470 net: vlan: fix VLAN 0 refcount imbalance of toggling filtering during runtime

Archives

Copyright © 2025 TheWindowsUpdate.com. All Rights Reserved.

Theme: Catch Box by Catch Themes

Scroll Up