Pricing Enterprise

CVE-2025-29822

7.8HIGH

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

Published: 4/8/2025Updated: 7/8/2025

View on NVD View on MITRE

Description

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

AI AnalysisPowered by AI

Affected Products

microsoftoffice

2019

microsoftoffice

2019

microsoftoffice_long_term_servicing_channel

2021

microsoftoffice_long_term_servicing_channel

2021

microsoftoffice_long_term_servicing_channel

2021

microsoftoffice_long_term_servicing_channel

2024

microsoftoffice_long_term_servicing_channel

2024

microsoftoffice_long_term_servicing_channel

2024

microsoftonenote

-

microsoftonenote

2016

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29822
Vendor Advisory