Microsoft Patch Tuesday July 2025: 130 Vulnerabilities Fixed Including 41 RCE

Posted on By CWS

Microsoft launched patch Tuesday June 2025 as a month-to-month safety replace, addressing a complete of 130 Microsoft Frequent Vulnerabilities and Exposures (CVEs) and republishing 10 non-Microsoft CVEs.

Vulnerability TypeCountRemote Code Execution (RCE)41Elevation of Privilege (EoP)53Information Disclosure (ID)18Denial of Service (DoS)5Spoofing4Data Tampering1Security Function Bypass8Total130

The replace covers a variety of services and products, together with Home windows, Microsoft Workplace, SQL Server, Microsoft Edge (Chromium-based), and Visible Studio, amongst others.

This launch contains crucial and vital vulnerabilities, with a number of permitting distant code execution (RCE). Notably, no zero-day vulnerabilities or actively exploited vulnerabilities had been reported on this replace.

Essential Vulnerabilities:

CVE-2025-47981 (Home windows SPNEGO Prolonged Negotiation, CVSS 9.8): This vulnerability permits attackers to realize excessive confidentiality, integrity, and availability impacts over a community with out consumer interplay, making it a high-priority goal for patching.

CVE-2025-49717 (SQL Server, CVSS 8.5): This vulnerability may permit attackers to execute code remotely with vital influence on affected techniques.

Vital Vulnerabilities:

These vulnerabilities span numerous Microsoft services and products, together with Home windows Kernel, Distant Desktop Consumer, Microsoft Workplace, Home windows BitLocker, and Home windows Routing and Distant Entry Service (RRAS). Most have CVSS scores starting from 5.5 to eight.8, indicating reasonable to excessive severity.

A good portion of the vulnerabilities 41 CVEs may doubtlessly result in distant code execution, permitting attackers to run arbitrary code on affected techniques. Key examples embrace:

CVE-2025-47981 (Home windows SPNEGO Prolonged Negotiation, CVSS 9.8): A crucial RCE vulnerability exploitable over a community with out consumer interplay.

CVE-2025-47998, CVE-2025-49657, CVE-2025-49663, CVE-2025-49668 CVE-2025–49674, CVE-2025-49676, CVE-2025-49729, CVE-2025-49753 (Home windows RRAS, CVSS 8.8): These vulnerabilities require consumer interplay however pose vital dangers as a result of their network-based assault vector.

CVE-2025-49687 (Microsoft Enter Methodology Editor, CVSS 8.8): This native RCE vulnerability impacts techniques with particular configurations.

CVE-2025-49701, CVE-2025-49704 (Microsoft Workplace SharePoint, CVSS 8.8): These vulnerabilities may permit attackers with low privileges to execute code remotely.

Microsoft confirmed that not one of the vulnerabilities on this replace are actively exploited or labeled as zero-day vulnerabilities.

The Exploitability column for all CVEs lists “Exploitation Unlikely” or “Exploitation Much less Seemingly,” indicating no recognized energetic exploitation on the time of launch.

CVE IDDescriptionSeverityImpactExploitation StatusCVE-2025-36357AMD: CVE-2025-36357 Transient Scheduler Assault in L1 Information QueueCriticalInformation DisclosureNoCVE-2025-36350AMD: CVE-2024-36350 Transient Scheduler Assault in Retailer QueueCriticalInformation DisclosureNoCVE-2025-49717Microsoft SQL Server Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49735Windows KDC Proxy Service (KPSSVC) Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-47980Windows Imaging Part Info Disclosure VulnerabilityCriticalInformation DisclosureNoCVE-2025-47981SPNEGO Prolonged Negotiation (NEGOEX) Safety Mechanism Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-48822Windows Hyper-V Discrete Machine Task (DDA) Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49695Microsoft Workplace Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49696Microsoft Workplace Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49697Microsoft Workplace Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49698Microsoft Phrase Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49702Microsoft Workplace Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49703Microsoft Phrase Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-49704Microsoft SharePoint Distant Code Execution VulnerabilityCriticalRemote Code ExecutionNoCVE-2025-26636Windows Kernel Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-33054Remote Desktop Spoofing VulnerabilityImportantSpoofingNoCVE-2025-47159Windows Virtualization-Based mostly Safety (VBS) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-21195Azure Service Cloth Runtime Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47971Microsoft Digital Laborious Disk Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47972Windows Enter Methodology Editor (IME) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47976Windows Easy Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47984Windows GDI Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-47985Windows Occasion Tracing Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47986Universal Print Administration Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47987Credential Safety Assist Supplier Protocol (CredSSP) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48824Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49657Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49658Windows Transport Driver Interface (TDI) Translation Driver Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49661Windows Ancillary Operate Driver for WinSock Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49670Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49671Windows Routing and Distant Entry Service (RRAS) Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49672Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49674Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49676Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49677Microsoft Brokering File System Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49686Windows TCP/IP Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49687Windows Enter Methodology Editor (IME) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49688Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49689Microsoft Digital Laborious Disk Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49690Capability Entry Administration Service (camsvc) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49691Windows Miracast Wi-fi Show Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49694Microsoft Brokering File System Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47991Windows Enter Methodology Editor (IME) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47993Microsoft PC Supervisor Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47994Microsoft Workplace Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48812Microsoft Excel Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49711Microsoft Excel Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49716Windows Netlogon Denial of Service VulnerabilityImportantDenial of ServiceNoCVE-2025-49719Microsoft SQL Server Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49721Windows Quick FAT File System Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49723Windows StateRepository API Server file Tampering VulnerabilityImportantTamperingNoCVE-2025-49726Windows Notification Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49731Microsoft Groups Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47178Microsoft Configuration Supervisor Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49753Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49756Office Developer Platform Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-47973Microsoft Digital Laborious Disk Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47975Windows Easy Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-1980-0000Windows Kerberos Denial of Service VulnerabilityImportantDenial of ServiceNoCVE-2025-47982Windows Storage VSP Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47996Windows MBT Transport Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47998Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-48000Windows Related Units Platform Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48001BitLocker Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48002Windows Hyper-V Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-48003BitLocker Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48799Windows Replace Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48800BitLocker Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48802Windows SMB Server Spoofing VulnerabilityImportantSpoofingNoCVE-2025-48803Windows Virtualization-Based mostly Safety (VBS) Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48804BitLocker Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48805Microsoft MPEG-2 Video Extension Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-48806Microsoft MPEG-2 Video Extension Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-48808Windows Kernel Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-48809Windows Safe Kernel Mode Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-48810Windows Safe Kernel Mode Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-48811Windows Virtualization-Based mostly Safety (VBS) Enclave Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48814Remote Desktop Licensing Service Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48815Windows Easy Search and Discovery Protocol (SSDP) Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48816HID Class Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48817Remote Desktop Consumer Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-48818BitLocker Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-48819Windows Common Plug and Play (UPnP) Machine Host Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48820Windows AppX Deployment Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48821Windows Common Plug and Play (UPnP) Machine Host Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-48823Windows Cryptographic Providers Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49659Windows Transport Driver Interface (TDI) Translation Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49660Windows Occasion Tracing Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49663Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49664Windows Consumer-Mode Driver Framework Host Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49665Workspace Dealer Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49666Windows Server Setup and Boot Occasion Assortment Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49667Windows Win32 Kernel Subsystem Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49668Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49669Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49673Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49675Kernel Streaming WOW Thunk Service Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49678NTFS Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49679Windows Shell Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49680Windows Efficiency Recorder (WPR) Denial of Service VulnerabilityImportantDenial of ServiceNoCVE-2025-49681Windows Routing and Distant Entry Service (RRAS) Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49682Windows Media Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49683Microsoft Digital Laborious Disk Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49684Windows Storage Port Driver Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49685Windows Search Service Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49693Microsoft Brokering File System Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49699Microsoft Workplace Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49700Microsoft Phrase Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49701Microsoft SharePoint Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49705Microsoft PowerPoint Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49706Microsoft SharePoint Server Spoofing VulnerabilityImportantSpoofingNoCVE-2025-49714Visual Studio Code Python Extension Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49718Microsoft SQL Server Info Disclosure VulnerabilityImportantInformation DisclosureNoCVE-2025-49722Windows Print Spooler Denial of Service VulnerabilityImportantDenial of ServiceNoCVE-2025-49724Windows Related Units Platform Service Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49725Windows Notification Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49727Win32k Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49729Windows Routing and Distant Entry Service (RRAS) Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49730Microsoft Home windows QoS Scheduler Driver Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49732Windows Graphics Part Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49733Win32k Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47999Windows Hyper-V Denial of Service VulnerabilityImportantDenial of ServiceNoCVE-2025-49737Microsoft Groups Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49738Microsoft PC Supervisor Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49739Visual Studio Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-49740Windows SmartScreen Safety Function Bypass VulnerabilityImportantSecurity Function BypassNoCVE-2025-49742Windows Graphics Part Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49744Windows Graphics Part Elevation of Privilege VulnerabilityImportantElevation of PrivilegeNoCVE-2025-47988Azure Monitor Agent Distant Code Execution VulnerabilityImportantRemote Code ExecutionNoCVE-2025-49760Windows Storage Spoofing VulnerabilityModerateSpoofingNo

Key Affected Merchandise and Providers

The vulnerabilities influence a broad array of Microsoft merchandise, together with:

Home windows Parts: Home windows Kernel, Home windows BitLocker, Home windows SSDP Service, Home windows Hyper-V, and Home windows Routing and Distant Entry Service (RRAS).

Microsoft Workplace Suite: Vulnerabilities in Excel, Phrase, PowerPoint, and SharePoint, with a number of permitting RCE or privilege escalation.

Cloud and Enterprise Providers: Azure Monitor Agent, Microsoft Intune, and SQL Server.

Improvement Instruments: Visible Studio and Visible Studio Code Python extension.

Browsers: Microsoft Edge (Chromium-based).

For 120 of the 130 Microsoft CVEs, Microsoft has offered FAQs to information customers on patching and mitigation methods.

No workarounds are listed for any of the vulnerabilities, indicating that making use of the safety updates is the first mitigation technique.

Solely two CVEs (CVE-2025-47981 and CVE-2025-49724) have particular mitigations listed, suggesting that almost all vulnerabilities require patching to handle dangers absolutely.

MSSP Pricing Information: How you can Lower By the Noise and the Hidden Prices -> Get Your Free Information
The submit Microsoft Patch Tuesday July 2025: 130 Vulnerabilities Mounted Together with 41 RCE appeared first on Cyber Safety Information.

Cyber Security News Tags:, , , , , , ,

Related Posts

F5 BIG-IP Command Injection Vulnerability Let Attackers Execute Arbitrary System Commands Cyber Security News
CISOs Guide to Regulatory Compliance in Global Landscapes Cyber Security News
Global Powers Intensify Cyber Warfare with Covert Digital Strikes on Critical Systems Cyber Security News
Hands-on Malware Analysis Training to Boost Up SOC & MSSP Teams Cyber Security News
5 New Trends In Phishing Attacks On Businesses  Cyber Security News
New Weaponized PyPI Package Attacking Developers to Steal Source Code Cyber Security News