CVE-2025-47953 – Microsoft Office Use After Free Remote Code Execution Vulnerability

June 11, 2025

CVE ID : CVE-2025-47953

Published : June 10, 2025, 5:24 p.m. | 18 hours, 51 minutes ago

Description : Use after free in Microsoft Office allows an unauthorized attacker to execute code locally.

Severity: 8.4 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47957 – Microsoft Office Word Use-After-Free Remote Code Execution Vulnerability

Next Article CVE-2025-47172 – Microsoft Office SharePoint SQL Injection

Highlights

CVE-2025-46570 – Apache vLLM PageAttention Chunk Prefill Timing Vulnerability

May 29, 2025

CVE ID : CVE-2025-46570

Published : May 29, 2025, 5:15 p.m. | 4 hours, 18 minutes ago

Description : vLLM is an inference and serving engine for large language models (LLMs). Prior to version 0.9.0, when a new prompt is processed, if the PageAttention mechanism finds a matching prefix chunk, the prefill process speeds up, which is reflected in the TTFT (Time to First Token). These timing differences caused by matching chunks are significant enough to be recognized and exploited. This issue has been patched in version 0.9.0.

Severity: 2.6 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

Java never goes out of style: Celebrating 30 years of the language

OpenAI o3-pro available in the API, BrowserStack adds Playwright support for real iOS devices, and more – Daily News Digest

Creating The “Moving Highlight” Navigation Bar With JavaScript And CSS

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

Copilot Vision just launched — and Microsoft already added new features

Master Data Management: The Key to Improved Analytics Reporting

Master Data Management: The Key to Improved Analytics Reporting

Salesforce Lead-to-Revenue Management

React Native 0.80 – React 19.1, JS API Changes, Freezing Legacy Arch and much more

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

Surface Pro 11 with Snapdragon X Elite drops to lowest price ever

With WH40K Boltgun and Dungeons of Hinterberg, this month’s Humble Choice lineup is stacked for less than $12

I’ve been loving the upgrade to my favorite mobile controller, and there’s even a version for large tablets

CVE-2025-47953 – Microsoft Office Use After Free Remote Code Execution Vulnerability

Graphite Spyware Exploits Apple iOS Zero-Click Vulnerability to Attack Journalists

PoC Exploit Released for Critical WebDAV 0-Day RCE Vulnerability Exploited by APT Hackers

CVE-2025-5642 – Radare2 radiff2 Memory Corruption Vulnerability

Identifying AI-generated images with SynthID

Metro Bundler 3.0: Supercharged Builds & a Smoother Developer Workflow

CVE-2025-44894 – Fortinet Wireless WGS-804HPT Stack Overflow Vulnerability

CVE-2025-46570 – Apache vLLM PageAttention Chunk Prefill Timing Vulnerability

RFP Templates and Guidebook

CVE-2025-49619 – Skyvern Jinja Runtime Leak

Best AI-Powered Tools to Build Your Next Project Faster

CVE-2025-47953 – Microsoft Office Use After Free Remote Code Execution Vulnerability

Related Posts