Microsoft February 2025 Security Updates

Discussion in 'Software' started by NICK ADSL UK, Feb 11, 2025.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK MajorGeeks Forum Administrator Staff Member


    February 2025 Security Updates
    This release consists of the following 63 Microsoft CVEs:

    Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations?
    Microsoft Dynamics 365 Sales CVE-2025-21177
    Windows DHCP Client CVE-2025-21179
    Windows Message Queuing CVE-2025-21181
    Windows Resilient File System (ReFS) Deduplication Service CVE-2025-21182
    Windows Resilient File System (ReFS) Deduplication Service CVE-2025-21183
    Windows CoreMessaging CVE-2025-21184
    Azure Network Watcher CVE-2025-21188
    Windows Telephony Service CVE-2025-21190
    Microsoft Surface CVE-2025-21194
    Microsoft High Performance Compute Pack (HPC) Linux Node Agent CVE-2025-21198
    Windows Telephony Service CVE-2025-21200
    Windows Telephony Server CVE-2025-21201
    Visual Studio CVE-2025-21206
    Windows Routing and Remote Access Service (RRAS) CVE-2025-21208
    Windows Internet Connection Sharing (ICS) CVE-2025-21212
    Windows Internet Connection Sharing (ICS) CVE-2025-21216
    Microsoft Edge for iOS and Android CVE-2025-21253
    Windows Internet Connection Sharing (ICS) CVE-2025-21254
    Outlook for Android CVE-2025-21259
    Microsoft Edge (Chromium-based) CVE-2025-21267
    Microsoft Edge (Chromium-based) CVE-2025-21279
    Microsoft Edge (Chromium-based) CVE-2025-21283
    Microsoft PC Manager CVE-2025-21322
    Microsoft Windows CVE-2025-21337
    Microsoft Edge (Chromium-based) CVE-2025-21342
    Windows Update Stack CVE-2025-21347
    Windows Remote Desktop Services CVE-2025-21349
    Windows Kerberos CVE-2025-21350
    Active Directory Domain Services CVE-2025-21351
    Windows Internet Connection Sharing (ICS) CVE-2025-21352
    Windows CoreMessaging CVE-2025-21358
    Windows Kernel CVE-2025-21359
    Windows Win32 Kernel Subsystem CVE-2025-21367
    Microsoft Digest Authentication CVE-2025-21368
    Microsoft Digest Authentication CVE-2025-21369
    Windows Telephony Service CVE-2025-21371
    Windows Installer CVE-2025-21373
    Microsoft Streaming Service CVE-2025-21375
    Windows LDAP - Lightweight Directory Access Protocol CVE-2025-21376
    Windows NTLM CVE-2025-21377
    Windows DHCP Server CVE-2025-21379
    Microsoft Office Excel CVE-2025-21381
    Microsoft Office Excel CVE-2025-21383
    Microsoft Office Excel CVE-2025-21386
    Microsoft Office Excel CVE-2025-21387
    Microsoft Office Excel CVE-2025-21390
    Windows Storage CVE-2025-21391
    Microsoft Office CVE-2025-21392
    Microsoft Office Excel CVE-2025-21394
    Microsoft Office CVE-2025-21397
    Microsoft Office SharePoint CVE-2025-21400
    Microsoft Edge (Chromium-based) CVE-2025-21404
    Windows Telephony Service CVE-2025-21406
    Windows Telephony Service CVE-2025-21407
    Microsoft Edge (Chromium-based) CVE-2025-21408
    Windows Routing and Remote Access Service (RRAS) CVE-2025-21410
    Windows DWM Core Library CVE-2025-21414
    Windows Ancillary Function Driver for WinSock CVE-2025-21418
    Windows Setup Files Cleanup CVE-2025-21419
    Windows Disk Cleanup Tool CVE-2025-21420
    Microsoft AutoUpdate (MAU) CVE-2025-24036
    Visual Studio Code CVE-2025-24039
    Visual Studio Code CVE-2025-24042

    We are republishing 4 non-Microsoft CVEs:
    CNA Tag CVE FAQs? Workarounds? Mitigations?
    HackerOne Open Source Software CVE-2023-32002 Yes No No
    Chrome Microsoft Edge (Chromium-based) CVE-2025-0444 Yes No No
    Chrome Microsoft Edge (Chromium-based) CVE-2025-0445 Yes No No
    Chrome Microsoft Edge (Chromium-based) CVE-2025-0451 Yes No No

    Security Update Guide Blog Posts
    Date Blog Post
    November 12, 2024 Toward greater transparency: Publishing machine-readable CSAF files
    June 27, 2024 Toward greater transparency: Unveiling Cloud Service CVEs
    April 9, 2024 Toward greater transparency: Security Update Guide now shares CWEs for CVEs
    January 6, 2023 Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API
    January 11, 2022 Coming Soon: New Security Update Guide Notification System
    February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
    January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
    December 8, 2020 Security Update Guide: Let’s keep the conversation going
    November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide
    Relevant Resources
    • The Hotpatching feature now supports Windows 11 version 24H2 client in addition to Windows Server 2022 and 2025. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
    • Windows 10 and Windows 11 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10 and Windows 11, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 and Windows 11 operating systems, please see Windows Lifecycle Facts Sheet.
    • Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
    • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
    • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
    • Customers running Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.
    Known Issues
    You can see these in more detail from the Deployments tab by selecting Known Issues column in the Edit Columns panel.

    For more information about Windows Known Issues, please see Windows message center (links to currently-supported versions of Windows are in the left pane).

    KB Article Applies To
    5051974 Windows 10, version 21H2, Windows 10, version 22H2
    5051979 Windows Server 2022
    5051980 Windows Server 2022, 23H2 Edition (Server Core installation)
    5051987 Windows 11, version 24H2
    5051989 Windows 11, version 22H2, Windows 11, version 23H2
    5052000 Windows 10, version 1809, Windows Server 2019
    5052038 Windows Server 2008 (Monthly Rollup)
    5052072 Windows Server 2008 (Security-only update)

    Released: Feb 11, 2025

    February 2025 Security Updates - Release Notes - Security Update Guide - Microsoft
     
    NICK ADSL UK, Feb 11, 2025
    #1
Thread Status:
Not open for further replies.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds