Microsoft’s newest Patch Tuesday updates handle greater than 60 vulnerabilities, together with a Home windows kernel zero-day that has been exploited in unspecified assaults.
The zero-day is tracked as CVE-2025-62215 and it has been described as an important-severity privilege escalation flaw that permits an attacker to realize System privileges on the focused Home windows machine.
“Profitable exploitation of this vulnerability requires an attacker to win a race situation,” Microsoft defined in its advisory.
In keeping with Microsoft, its Menace Intelligence Heart (MSTIC) and Microsoft Safety Response Heart (MSRC) discovered CVE-2025-62215. The tech big has not disclosed any data on the assaults exploiting the vulnerability.
Microsoft has assigned ‘crucial severity’ rankings to 4 vulnerabilities affecting Home windows, Workplace, Visible Studio, and Nuance PowerScribe 360.
Essential-severity safety holes have been patched this month in Home windows, Visible Studio, Azure Monitor Agent, Configuration Supervisor, Dynamics 365, Workplace, OneDrive, SharePoint, and Edge.
General, greater than 30 of the vulnerabilities fastened this month will be exploited for privilege escalation, and 22 enable distant code execution. Different weaknesses can result in spoofing, DoS, safety bypass, and knowledge disclosure.
Extra data on the newest patches is on the market on Microsoft’s MSRC web site.Commercial. Scroll to proceed studying.
Adobe this month patched almost 30 vulnerabilities throughout its product portfolio.
Associated: Essential Triofox Vulnerability Exploited within the Wild
Associated: Microsoft Disables Downloaded File Previews to Block NTLM Hash Leaks
Associated: ‘Highest Ever’ Severity Rating Assigned by Microsoft to ASP.NET Core Vulnerability
