CVE-2025-21259

MEDIUM EPSS 60.4%

Published Feb 11, 20251y ago · Modified Jun 17, 20261w ago

5.3 CVSS 3.1

Medium

Published Feb 11, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

Microsoft Outlook Spoofing Vulnerability

Base Score

5.3

Exploitability

3.9

Impact

1.4

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality None

Integrity Low

Availability None

EPSS Exploit Probability

60.4% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

CWE-451

Vendor	Product	Version	Range
microsoft	outlook	*	<4.2501.1

msrc.microsoft.com https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21259

PatchVendor Advisory

msrc.microsoft.com https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21259

PatchVendor Advisory