Microsoft, Patch Tuesday and Security Update

Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks
The January 2025 security update for Windows 11, version 24H2 expands the list of vulnerable drivers that could be used in Bring Your Own Vulnerable Driver attacks. BYOVD Vulnerabilities in kernel drivers could allow threat actors to sneak malware into the kernel.
Microsoft’s big Patch Tuesday fixes over twice as many security flaws as usual
Yesterday was January’s big Patch Tuesday, where Microsoft rolled out a big bundle of security updates across several apps and services, eliminating 159 security vulnerabilities. This is the most extensive Patch Tuesday of the last few years with more than double the usual number of fixed security flaws.
Biggest Patch Tuesday in years sees Microsoft address 159 vulnerabilities
The largest Patch Tuesday of the 2020s so far brings fixes for over 150 CVEs ranging widely in their scope and severity - including eight zero-day flaws
Microsoft's Patch Tuesday January updates address 8 zero-day vulnerabilities from a total of 159 CVEs
Microsoft released the first Patch Tuesday security updates for Windows addressing 159 CVEs with 8 zero-day threats discovered.
Microsoft's Largest Patch Tuesday Since 2017: 161 Vulnerabilities Fixed in January 2025 Update
All three zero-day vulnerabilities have a CVSS score of 7.8 and could allow an attacker to gain system privileges.
Microsoft patches over 160 security flaws including 3 active zero days — update your PC right now
Microsoft just released its first round of Patch Tuesday updates this year and you should update your Windows PC right now to stay safe.
New Critical Microsoft Windows Warning As 3 Zero-Day Attacks Underway
Microsoft has confirmed that a staggering three zero-day cyberattacks are underway against Windows users—here’s what you need ...
Security Boulevard4d
Patch Tuesday Update – January 2025
In this Patch Tuesday edition, Microsoft addressed 159 CVEs, including 8 Zero-Day, 10 Criticals, 147 Important — with 3 Zero-Days actively exploited in the wild and 5 others publicly disclosed. From ...
ITWire2d
Patch Tuesday Commentary from Tenable
GUEST RESEACH: Microsoft patched a whopping 157 CVEs in its inaugural Patch Tuesday for 2025. Not only is this the largest number of CVEs patched in January, it is the largest number of CVEs ...
Critical Microsoft Outlook Vulnerability Rated 9.8/10 Confirmed—Update Now
A critical-rated Outlook vulnerability has been confirmed by Microsoft which has warned that exploitation is likely—here’s ...
Windows 11 KB5050009 & KB5050021 cumulative updates released
Microsoft has released the Windows 11 KB5050009 and KB5050021 cumulative updates for versions 24H2 and 23H2 to fix security ...
SecurityWeek5d
Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days
Microsoft has rushed out fixes for a trio of already-exploited zero-day vulnerabilities in the Windows Hyper-V platform.
Hosted on MSN4d
Windows Patch Tuesday hits snag with Citrix software, workarounds published
Microsoft starts 2025 as it hopefully doesn't mean to go on Devices that have Citrix's Session Recording software installed ...
Windows 10 KB5049981 update released with new BYOVD blocklist
Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated ...