Microsoft patches three worrying security flaws in its latest critical update, so update now
Patch Tuesday cumulative update It fixes more than 150 vulnerabilities, including three being actively abused in the wild Other details about the flaws are not being disclosed at this time The first Microsoft Patch Tuesday of 2025 is upon us,
Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks
The January 2025 security update for Windows 11, version 24H2 expands the list of vulnerable drivers that could be used in Bring Your Own Vulnerable Driver attacks. BYOVD Vulnerabilities in kernel drivers could allow threat actors to sneak malware into the kernel.
3 Actively Exploited Zero-Day Flaws Patched in Microsoft's Latest Security Update
All the three Microsoft Access issues, on the other hand, have been credited to Unpatched.ai, an AI-guided vulnerability discovery platform. Action1 also noted that while the flaws are categorized as remote code execution (RCE) vulnerabilities, exploitation requires an attacker to convince the user to open a specially crafted file.
Microsoft’s big Patch Tuesday fixes over twice as many security flaws as usual
Yesterday was January’s big Patch Tuesday, where Microsoft rolled out a big bundle of security updates across several apps and services, eliminating 159 security vulnerabilities. This is the most extensive Patch Tuesday of the last few years with more than double the usual number of fixed security flaws.
Microsoft Patches Eight Zero-Days to Start the Year
Microsoft released security updates for eight zero-day flaws in its first Patch Tuesday of 2025, with three of the vulnerabilities under active exploitation. Microsoft defines zero-day vulnerabilities as software flaws that have either been publicly disclosed or are being actively exploited, with no patch available.
Biggest Patch Tuesday in years sees Microsoft address 159 vulnerabilities
The largest Patch Tuesday of the 2020s so far brings fixes for over 150 CVEs ranging widely in their scope and severity - including eight zero-day flaws
Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days
Microsoft has rushed out fixes for a trio of already-exploited zero-day vulnerabilities in the Windows Hyper-V platform.
Microsoft's Patch Tuesday January updates address 8 zero-day vulnerabilities from a total of 159 CVEs
Microsoft released the first Patch Tuesday security updates for Windows addressing 159 CVEs with 8 zero-day threats discovered.
Microsoft's Massive First Patch of 2025 Includes 8 Zero-Day Flaw Fixes
Microsoft’s first Patch Tuesday of 2025 has arrived, and it's a big one. Microsoft addressed 159 vulnerabilities, including eight zero-day flaws, three of which have been actively exploited in the wild.
New UEFI Secure Boot flaw exposes systems to bootkits, patch now
A new UEFI Secure Boot bypass vulnerability tracked as CVE-2024-7344 that affects a Microsoft-signed application could be ...
New Critical Microsoft Windows Warning As 3 Zero-Day Attacks Underway
Microsoft has confirmed that a staggering three zero-day cyberattacks are underway against Windows users—here’s what you need ...