Focus Mode
Trash

Microsoft January Security Update for High-Risk Vulnerabilities in Multiple Products

iocOne
Microsoft January Security Update for High-Risk Vulnerabilities in Multiple Products
Microsoft has released a security update patch addressing 159 vulnerabilities across various products, including critical remote code execution and privilege escalation vulnerabilities. Users are urged to apply these patches promptly to mitigate risks. Affected: Windows, Microsoft Office, Microsoft Visual Studio, Azure, Microsoft Dynamics, Microsoft Edge

Keypoints :

  • Microsoft released a security update on January 14, fixing 159 vulnerabilities.
  • 12 vulnerabilities are classified as critical, while 147 are important.
  • High-risk vulnerabilities include remote code execution and privilege escalation.
  • Notable vulnerabilities include CVE-2025-21333, CVE-2025-21298, and CVE-2025-21307.
  • Users are strongly recommended to update their systems as soon as possible.

MITRE Techniques :

  • Privilege Escalation (T1068): Exploited through Windows Hyper-V NT Kernel Integration VSP vulnerabilities (CVE-2025-21333/CVE-2025-21334/CVE-2025-21335) allowing authenticated local attackers to gain SYSTEM privileges.
  • Remote Code Execution (T1203): Exploited through the Windows OLE vulnerability (CVE-2025-21298) where unauthenticated attackers can execute code via specially crafted emails.
  • Remote Code Execution (T1203): Exploited through Windows Reliable Multicast Transport Driver (CVE-2025-21307) enabling unauthenticated attackers to execute remote code via special packets.
  • Privilege Escalation (T1068): Exploited via Windows NTLM V1 vulnerability (CVE-2025-21311) allowing unauthenticated attackers to elevate privileges over the network.
  • Remote Code Execution (T1203): Exploited through Microsoft Excel vulnerabilities (CVE-2025-21354/CVE-2025-21362) allowing attackers to execute arbitrary code through social engineering.

Indicator of Compromise :

  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21333
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21298
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21307
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21311
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21354
  • Check the article for all found IoCs.

Full Research: https://nsfocusglobal.com/microsofts-january-security-update-of-high-risk-vulnerabilities-in-multiple-products/

Tags: CLOUD, VULNERABILITY, LINUX, SPOOFING, PATCH, IMPACT, CHINA, EXPLOIT