Microsoft Patch Tuesday January 2025 Security Update Review Qualys ThreatPROTECT

January 2025 marks the release of Microsoft’s first Patch Tuesday, addressing 159 vulnerabilities, including 10 critical and 149 important. Among these, eight zero-day vulnerabilities have been patched, with three actively exploited. Key updates include fixes for various Microsoft products, notably in Windows and Microsoft Office. Affected: Microsoft Windows, Microsoft Office, .NET, Visual Studio, Microsoft Access

Keypoints :

Microsoft Patch Tuesday for January 2025 fixed 159 vulnerabilities.
Includes 10 critical vulnerabilities and 149 important vulnerabilities.
Eight zero-day vulnerabilities were addressed, with three actively exploited.
No vulnerabilities were patched in Microsoft Edge (Chromium-based).
Categories of vulnerabilities include Spoofing, DoS, EoP, Information Disclosure, and RCE.
Significant vulnerabilities include those in Windows Hyper-V, Microsoft Access, and Windows Remote Desktop Services.
Qualys Policy Compliance provides mitigation controls for some vulnerabilities.

MITRE Techniques :

TA0001: Initial Access – Exploitation of vulnerabilities to gain access to the system.
TA0002: Execution – Remote Code Execution vulnerabilities exploited to execute arbitrary code.
TA0003: Persistence – Elevation of Privilege vulnerabilities allowing attackers to maintain access.
TA0005: Defense Evasion – Security Feature Bypass vulnerabilities that allow attackers to evade detection.
TA0007: Discovery – Information Disclosure vulnerabilities that reveal sensitive information.

Indicator of Compromise :

[Vulner] CVE-2025-21333
[Vulner] CVE-2025-21334
[Vulner] CVE-2025-21335
Check the article for all found IoCs.

Full Research: https://threatprotect.qualys.com/2025/01/15/microsoft-patch-tuesday-january-2025-security-update-review/

Tags: CVE, EXPLOIT, ANDROID, TOOL, EMAIL, ACTIVE DIRECTORY, DEFENSE EVASION, VULNERABILITY