Scripting Engine Memory Corruption Vulnerability

May 13, 2025 invoker category_news

Security Update News

Update Information

Title Scripting Engine Memory Corruption Vulnerability
Update ID MS:CVE-2025-30397
Type mscve
Published 2025-05-13T07:00:00
Last Updated 2025-05-13T07:00:00

Security Impact

CVSS Score 7.5
Severity HIGH
Attack Vector NETWORK

Affected CVEs

  • CVE-2025-30397

Update Details

Access of resource using incompatible type (‘type confusion’) in Microsoft Scripting Engine allows an unauthorized attacker to execute code over a network.

View Advisory Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.