CVE-2025-60728 is a vulnerability classified under CWE-822 (Untrusted Pointer Dereference) affecting Microsoft Excel within Microsoft 365 Apps for Enterprise version 16.0.1. The flaw arises when Excel improperly handles pointers that reference memory locations without sufficient validation, allowing an attacker to cause the application to dereference untrusted pointers. This can lead to information disclosure over a network, as the attacker may manipulate Excel files to trigger the vulnerability. The attack vector is network-based (AV:N), requires no privileges (PR:N), but does require user interaction (UI:R), such as opening a malicious Excel document. The vulnerability does not compromise confidentiality or integrity directly but can cause limited availability impact. The CVSS v3.1 base score is 4.3, indicating medium severity. No known public exploits or patches are currently available, but the vulnerability is publicly disclosed and assigned a CVE ID. The issue highlights the importance of secure memory handling in complex office applications that process untrusted input. Organizations relying on Microsoft 365 Apps for Enterprise should monitor for official patches and advisories from Microsoft.

For European organizations, this vulnerability poses a moderate risk primarily due to the widespread use of Microsoft 365 Apps for Enterprise in business environments. Although the direct impact on confidentiality and integrity is minimal, the potential for information leakage could expose sensitive corporate data or internal configurations if exploited. The requirement for user interaction means phishing or social engineering could be used to deliver malicious Excel files. This could disrupt business operations or lead to compliance issues under GDPR if personal or sensitive data is exposed. The availability impact is low but could cause temporary denial of service or application crashes. Organizations in sectors with high regulatory scrutiny or handling sensitive data, such as finance, healthcare, and government, may face increased risk. The absence of known exploits reduces immediate threat but does not eliminate future risk once exploit code becomes available.

1. Monitor Microsoft security advisories closely and apply patches promptly once released for Microsoft 365 Apps for Enterprise, specifically Excel version 16.0.1. 2. Implement strict email filtering and attachment scanning to block or quarantine suspicious Excel files from untrusted sources. 3. Educate users on the risks of opening unsolicited or unexpected Excel documents, emphasizing caution with macros and embedded content. 4. Utilize application control or sandboxing technologies to restrict the execution of untrusted Office documents. 5. Employ network-level protections such as intrusion detection/prevention systems (IDS/IPS) configured to detect anomalous Office document behavior. 6. Consider disabling or restricting features in Excel that are not required and could be exploited to trigger pointer dereference issues. 7. Maintain up-to-date endpoint protection solutions capable of detecting exploitation attempts. 8. Conduct regular security awareness training focused on social engineering and phishing tactics that could deliver malicious files.