CVEFinder.io

CVE-2025-53783

⚠ī¸ high
🔍 Scan for this CVE
Summary

Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a network.

CVSS Score
7.5
High
EPSS Score
0.1
Exploit Probability
Published Date
2025-08-12
First Seen: 2026-01-05
📊 Relative Risk Intelligence

This CVE is Moderate Risk - more severe than 69.0% of all 327,350 vulnerabilities in our database.

#101,599
Above average severity
Severity Percentile
đŸŽ¯ CISA SSVC Assessment Updated: Aug 12, 2025
🔍 Exploitation Status
None
No known exploits
⚙ī¸ Automatable
NO
Requires human interaction
đŸ’Ĩ Technical Impact
Total
Complete system compromise possible
SSVC data provided by CISA
Last Modified 2025-09-03
Source NVD 🔗
CVSS Vector 3.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE IDs (Weakness Types)
CWE-122

đŸ“Ļ Affected Products 8

Vendor Product Status Affected Versions
microsoft teams Affected
< 1.0.0.2025102802
microsoft teams Affected
< 25122.1207.3700.1444
microsoft teams Affected
< 25122.1415.3698.6812
microsoft teams Affected
< 7.10.1
microsoft dynamics_365_guides Affected
< 907.2505.29001.0
microsoft dynamics_365_remote_assist Affected
< 316.2505.28001
microsoft teams_panels Affected
< 1.0.97.2025102203
microsoft teams_phones Affected
< 1.0.94.2025168802

🔗 References 1

https://msrc.microsoft.com/update-guide/vulnerabilit...
Vendor Advisory

🔗 Related CVEs 6

CVE ID Severity CVSS EPSS Summary Published
CVE-2026-42835 ⚠ī¸ high 8.1 0.2 Improper neutralization of special elements in output used by a downstream component ('injection') in Microsoft Teams fo... 2026-06-09
CVE-2026-32185 đŸ”ļ medium 5.5 0.1 Files or directories accessible to external parties in Microsoft Teams allows an unauthorized attacker to perform spoofi... 2026-05-12
CVE-2026-33823 ⛔ critical 9.6 0.1 Improper authorization in Microsoft Teams allows an authorized attacker to disclose information over a network. 2026-05-07
CVE-2026-26133 ⚠ī¸ high 7.1 0.1 AI command injection in M365 Copilot allows an unauthorized attacker to disclose information over a network. 2026-03-16
CVE-2026-21535 ⚠ī¸ high 8.2 0.1 Improper access control in Microsoft Teams allows an unauthorized attacker to disclose information over a network. 2026-02-19
CVE-2025-49731 ℹī¸ low 3.1 0.0 Improper handling of insufficient permissions or privileges in Microsoft Teams allows an authorized attacker to elevate ... 2025-07-08
These CVEs affect the same products