CVE-2025-26393 – SolarWinds Service Desk Vulnerability

March 18, 2025

Stealc Information Stealer Malware – Active IOCs

March 19, 2025

Multiple Microsoft Excel Vulnerabilities

March 18, 2025

Severity

High

Analysis Summary

CVE-2025-24075 CVSS:7.8

Stack-based buffer overflow in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-24082 CVSS:7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

CVE-2025-24081 CVSS:7.8

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally.

Impact

Code Execution

Indicators of Compromise

CVE

CVE-2025-24075
CVE-2025-24082
CVE-2025-24081

Affected Vendors

Microsoft

Affected Products

Microsoft 365 Apps for Enterprise - 16.0.1
Microsoft Office 2019 - 19.0.0
Microsoft Office LTSC 2021 - 16.0.1
Microsoft Office LTSC for Mac 2021 - 16.0.1
Microsoft Microsoft Office LTSC 2024 - 1.0.0
Microsoft Office LTSC for Mac 2024 - 1.0.0
Microsoft Excel 2016 - 16.0.0.0
Microsoft Office Online Server - 1.0.0

Remediation

Use Microsoft Automatic Update to apply the appropriate patch for your system, or the Microsoft Security Update Guide to search for available patches.

CVE-2025-24075

CVE-2025-24082

CVE-2025-24081

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

SuperCard X Malware Exploiting NFC for Financial Fraud – Active IOCs

Zoom Remote Control Feature Exploited to Gain Access

Microsoft Entra Account Lockouts Triggered by Token Logging Error

Threat Insights

About Us

Our Leadership

CSR

Connect with Us