Acunetix DAST powers runtime capabilities for Invicti’s complete AppSec platform. Visit Invicti for more.

WEB APPLICATION VULNERABILITIES Standard & Premium

SharePoint Other Vulnerability (CVE-2025-54906)

Description

Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.

Remediation

References

Related Vulnerabilities

Apache HTTP Server Other Vulnerability (CVE-2004-0113)

Oracle Application Server CVE-2006-3713 Vulnerability (CVE-2006-3713)

WordPress Plugin Display Users SQL Injection (2.0.0)

Serendipity Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2011-1135)

Microsoft SQL Server Other Vulnerability (CVE-2000-1081)

Severity

High

Classification

CVE-2025-54906 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities