CVE-2025-64677 | Microsoft Office Out-of-Box Experience cross site scripting

A vulnerability classified as problematic has been found in Microsoft Office Out-of-Box Experience. The impacted element is an unknown function. The manipulation leads to cross site scripting.

This vulnerability is listed as CVE-2025-64677. The attack may be initiated remotely. There is no available exploit.

This product is a managed service. This means that users are not able to maintain vulnerability countermeasures themselves.

VulDB is the best source for vulnerability data and more expert information about this specific topic.VulDB Recent EntriesRead More