What is the CVSS score of CVE-2025-47994?

CVE-2025-47994 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.3%.

Which versions of Office Long Term Servicing Channel are affected by CVE-2025-47994?

CVE-2025-47994 is a privilege escalation vulnerability in Microsoft Office that allows local attackers to gain elevated system permissions through malicious file deserialization.. A patch is available.

How to fix or mitigate CVE-2025-47994?

Within 24 hours: Inventory all Microsoft Office installations across the organization and confirm current versions. Within 7 days: Apply vendor-released patch to all affected Office instances; consult Microsoft security advisories for exact version numbers matching your deployment. Within 30 days: Conduct post-patch verification across all endpoints and update endpoint detection and response (EDR) signatures to detect exploitation attempts.

Office Long Term Servicing Channel CVE-2025-47994

EUVD-2025-20630 HIGH

Deserialization of Untrusted Data (CWE-502)

2025-07-08 secure@microsoft.com

Deserialization Microsoft Office Long Term Servicing Channel Sharepoint Enterprise Server Office 365 Apps

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:32 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

16.0.5508.1001

EUVD ID Assigned

Mar 16, 2026 - 04:21 euvd

EUVD-2025-20630

Analysis Generated

Mar 16, 2026 - 04:21 vuln.today

CVE Published

Jul 08, 2025 - 17:15 nvd

HIGH 7.8

DescriptionCVE.org

Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.

Analysis

Deserialization of untrusted data in Microsoft Office allows an unauthorized attacker to elevate privileges locally.

Technical ContextAI

Insecure deserialization occurs when untrusted data is used to reconstruct objects, allowing attackers to manipulate serialized data to execute arbitrary code. This vulnerability is classified as Deserialization of Untrusted Data (CWE-502).

RemediationAI

Avoid deserializing untrusted data. Use safe serialization formats (JSON instead of native serialization). Implement integrity checks on serialized data.

CVE-2025-47994 vulnerability details – vuln.today

Back

Office Long Term Servicing Channel CVE-2025-47994

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

Analysis

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code