Description Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally. Remediation References CVE-2025-27747 Related Vulnerabilities Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26269) phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3696) WordPress Plugin Email Subscribers by Icegram Express-Email Marketing, Newsletters, Automation for WordPress & WooCommerce Information Disclosure (3.4.7) phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-1149) Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2008-3741) Severity High Classification CVE-2025-27747 CWE-822 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities