CVE-2025-54906 Microsoft Office Remote Code Execution Vulnerability
Free of memory not on the heap in Microsoft Office allows an unauthorized attacker to execute code locally.
Reference: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54906