Microsoft has issued a critical security update addressing 126 vulnerabilities across several products like Windows, Microsoft Office, and Azure, including serious threats such as privilege escalation and remote code execution. Users are urged to apply these patches promptly to mitigate risks. Affected: Windows, Microsoft Office, Azure, Microsoft Edge, Microsoft Visual Studio
Keypoints :
- Microsoft released an April security update patch for 126 vulnerabilities.
- 11 vulnerabilities are classified as critical, and 112 are deemed important.
- One vulnerability, CVE-2025-29824, is known to be exploited actively.
- Recommended action: Apply security patches immediately.
- A comprehensive list of vulnerabilities is available in the official announcement.
MITRE Techniques :
- Privilege Escalation (T1068): An authenticated local attacker can exploit CVE-2025-29824 in the Windows Common Log File System driver to gain SYSTEM privileges.
- Remote Code Execution (T1203): CVE-2025-29794 allows an authenticated remote attacker to execute arbitrary code in Microsoft SharePoint.
- Remote Code Execution (T1203): CVE-2025-27480 and CVE-2025-27482 in the Windows Remote Desktop Service enable unauthenticated remote code execution through flaws in memory handling.
- Remote Code Execution (T1203): CVE-2025-26670 and CVE-2025-26663 permit remote code execution via specially crafted requests in the LDAP client.
- Remote Code Execution (T1203): CVE-2025-27752 in Microsoft Excel enables code execution through a buffer overflow vulnerability.
- Privilege Escalation (T1068): CVE-2025-26647 allows an unauthenticated attacker to issue false certificates in Windows Kerberos.
- Information Disclosure (T1071): CVE-2025-26669 involves exploiting out-of-bounds reads in Windows RRAS, leading to remote code execution.
Views: 11