Return to CVE list

CVE-2025-29822

7.8

Critical

CVE-2025-29822

8 Apr 2025

secure@microsoft.com

Awaiting Analysis

View on MITRE Find on GitHub

Description

Incomplete list of disallowed inputs in Microsoft Office OneNote allows an unauthorized attacker to bypass a security feature locally.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

secure@microsoft.com

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29822