You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve-2025-47957
About this tag
CVE-2025-47957 is a critical use-after-free remote code execution vulnerability in Microsoft Office Word. The flaw occurs when Word continues to reference memory after it has been freed, allowing an attacker to execute arbitrary code locally. Exploitation typically requires tricking a user into opening a specially crafted file. This vulnerability is part of a broader set of similar Office Word use-after-free RCE CVEs from 2025. Users should apply security updates from Microsoft to mitigate the risk.
I can write that feature article, but a quick verification step first — I could not find any public record for CVE‑2025‑53738 in Microsoft’s Update Guide, NVD, MITRE or other CVE aggregators. I did search MSRC (the link you provided requires JavaScript to render) and public databases for that...
cve-2025-47957
cybersecurity
exploit prevention
microsoft office
microsoft word
msrc
nvd
office security
remote code execution
use-after-free
windows security
word vulnerability
CVE-2025-47957: Microsoft Word Remote Code Execution Vulnerability
Description
CVE-2025-47957 is a critical "use after free" vulnerability in Microsoft Office Word. It allows an unauthorized attacker to execute code locally on the affected machine. The flaw arises when Microsoft Word mistakenly...