Focus Mode
Trash

Vulnerability Announcement Microsoft January Security Update Multiple Product High-Risk Vulnerability Announcement – Green Alliance Technology Blog

iocOne
On January 14, 2025, Green Alliance Technology CERT reported that Microsoft released a security update addressing 159 vulnerabilities across various products, including Windows, Microsoft Office, and Azure. Among these, 12 critical vulnerabilities were identified, including remote code execution and privilege escalation flaws. Users are urged to apply the patches promptly to mitigate risks. Affected: Windows, Microsoft Office, Azure

Keypoints :

  • Microsoft released a security update on January 14, 2025, fixing 159 vulnerabilities.
  • 12 critical vulnerabilities were identified, including remote code execution and privilege escalation issues.
  • Three vulnerabilities are actively exploited in the wild.
  • Users are advised to update their systems immediately to protect against these vulnerabilities.
  • A detailed list of affected products and vulnerabilities is available in the official announcement.

MITRE Techniques :

  • Privilege Escalation (T1068) – Exploited via Windows Hyper-V NT Kernel Integration VSP vulnerabilities (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335).
  • Remote Code Execution (T1203) – Exploited through Windows OLE remote code execution vulnerability (CVE-2025-21298).
  • Remote Code Execution (T1203) – Exploited via Windows Reliable Multicast Transport Driver (CVE-2025-21307).
  • Privilege Escalation (T1068) – Exploited through Windows NTLM V1 vulnerability (CVE-2025-21311).
  • Remote Code Execution (T1203) – Exploited via Microsoft Excel vulnerabilities (CVE-2025-21354, CVE-2025-21362).
  • Remote Code Execution (T1203) – Exploited via Windows Remote Desktop Services vulnerability (CVE-2025-21297).
  • Remote Code Execution (T1203) – Exploited via BranchCache vulnerability (CVE-2025-21296).

Indicator of Compromise :

  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21333
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21334
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21335
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21298
  • [url] https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2025-21307
  • Check the article for all found IoCs.

Full Research: https://blog.nsfocus.net/1-2/

Tags: ACTIVE DIRECTORY, LINUX, VULNERABILITY, CLOUD, CVE, PRIVILEGE, WINDOWS