Microsoft November 2025 Security Updates

Discussion in 'Software' started by NICK ADSL UK, Nov 11, 2025 at 1:16 PM.

Thread Status:
Not open for further replies.
  1. NICK ADSL UK

    NICK ADSL UK MajorGeeks Forum Administrator Staff Member

    November 2025 Security Updates

    This release consists of the following 63 Microsoft CVEs:


    Tag CVE Base Score CVSS Vector Exploitability FAQs? Workarounds? Mitigations?

    Nuance PowerScribe CVE-2025-30398
    Microsoft Configuration Manager CVE-2025-47179
    Microsoft Office Excel CVE-2025-59240
    SQL Server CVE-2025-59499
    Azure Monitor Agent CVE-2025-59504
    Windows Smart Card CVE-2025-59505
    Windows DirectX CVE-2025-59506
    Windows Speech CVE-2025-59507
    Windows Speech CVE-2025-59508
    Windows Speech CVE-2025-59509
    Windows Routing and Remote Access Service (RRAS) CVE-2025-59510
    Windows WLAN Service CVE-2025-59511
    Customer Experience Improvement Program (CEIP) CVE-2025-59512
    Windows Bluetooth RFCOM Protocol Driver CVE-2025-59513
    Microsoft Streaming Service CVE-2025-59514
    Windows Broadcast DVR User Service CVE-2025-59515
    Windows Remote Desktop CVE-2025-60703
    Windows Kerberos CVE-2025-60704
    Windows Client-Side Caching (CSC) Service CVE-2025-60705
    Role: Windows Hyper-V CVE-2025-60706
    Multimedia Class Scheduler Service (MMCSS) CVE-2025-60707
    Storvsp.sys Driver CVE-2025-60708
    Windows Common Log File System Driver CVE-2025-60709
    Host Process for Windows Tasks CVE-2025-60710
    Windows Routing and Remote Access Service (RRAS) CVE-2025-60713
    Windows OLE CVE-2025-60714
    Windows Routing and Remote Access Service (RRAS) CVE-2025-60715
    Windows DirectX CVE-2025-60716
    Windows Broadcast DVR User Service CVE-2025-60717
    Windows Administrator Protection CVE-2025-60718
    Windows Ancillary Function Driver for WinSock CVE-2025-60719
    Windows TDX.sys CVE-2025-60720
    Windows Administrator Protection CVE-2025-60721
    OneDrive for Android CVE-2025-60722
    Windows DirectX CVE-2025-60723
    Microsoft Graphics Component CVE-2025-60724
    Microsoft Office Excel CVE-2025-60726
    Microsoft Office Excel CVE-2025-60727
    Microsoft Office Excel CVE-2025-60728
    Microsoft Office CVE-2025-62199
    Microsoft Office Excel CVE-2025-62200
    Microsoft Office Excel CVE-2025-62201
    Microsoft Office Excel CVE-2025-62202
    Microsoft Office Excel CVE-2025-62203
    Microsoft Office SharePoint CVE-2025-62204
    Microsoft Office Word CVE-2025-62205
    Microsoft Dynamics 365 (on-premises) CVE-2025-62206
    Windows License Manager CVE-2025-62208
    Windows License Manager CVE-2025-62209
    Dynamics 365 Field Service (online) CVE-2025-62210
    Dynamics 365 Field Service (online) CVE-2025-62211
    Windows Ancillary Function Driver for WinSock CVE-2025-62213
    Visual Studio CVE-2025-62214
    Windows Kernel CVE-2025-62215
    Microsoft Office CVE-2025-62216
    Windows Ancillary Function Driver for WinSock CVE-2025-62217
    Microsoft Wireless Provisioning System CVE-2025-62218
    Microsoft Wireless Provisioning System CVE-2025-62219
    Windows Subsystem for Linux GUI CVE-2025-62220
    Visual Studio Code CoPilot Chat Extension CVE-2025-62222
    Visual Studio Code CoPilot Chat Extension CVE-2025-62449
    Windows Routing and Remote Access Service (RRAS) CVE-2025-62452
    GitHub Copilot and Visual Studio Code CVE-2025-62453

    We are republishing 5 non-Microsoft CVEs:


    CNA Tag CVE FAQs? Workarounds? Mitigations?
    Chrome Microsoft Edge (Chromium-based) CVE-2025-12725
    Chrome Microsoft Edge (Chromium-based) CVE-2025-12726
    Chrome Microsoft Edge (Chromium-based) CVE-2025-12727
    Chrome Microsoft Edge (Chromium-based) CVE-2025-12728
    Chrome Microsoft Edge (Chromium-based) CVE-2025-12729

    Security Update Guide Blog Posts


    Date Blog Post
    October 31, 2025 You asked, we delivered: Introducing new features for an improved security experience
    October 28, 2025 Understanding CVE-2025-55315: What CISOs, security engineers, and sysadmins should know
    October 22, 2025 Toward greater transparency: Introducing machine-readable Vulnerability Exploitability Xchange (VEX) for Azure Linux and beyond
    November 12, 2024 Toward greater transparency: Publishing machine-readable CSAF files
    June 27, 2024 Toward greater transparency: Unveiling Cloud Service CVEs
    April 9, 2024 Toward greater transparency: Security Update Guide now shares CWEs for CVEs
    January 6, 2023 Publishing CBL-Mariner CVEs on the Security Update Guide CVRF API
    January 11, 2022 Coming Soon: New Security Update Guide Notification System
    February 9, 2021 Continuing to Listen: Good News about the Security Update Guide API
    January 13, 2021 Security Update Guide Supports CVEs Assigned by Industry Partners
    December 8, 2020 Security Update Guide: Let’s keep the conversation going
    November 9, 2020 Vulnerability Descriptions in the New Version of the Security Update Guide

    Relevant Resources
    • The new Hotpatching feature is now generally available. Please see Hotpatching feature for Windows Server Azure Edition virtual machines (VMs) for more information.
    • Windows 10 and Windows 11 updates are cumulative. The monthly security release includes all security fixes for vulnerabilities that affect Windows 10 and Windows 11, in addition to non-security updates. The updates are available via the Microsoft Update Catalog. For information on lifecycle and support dates for Windows 10 and Windows 11 operating systems, please see Windows Lifecycle Facts Sheet.
    • Microsoft is improving Windows Release Notes. For more information, please see What's next for Windows release notes.
    • A list of the latest servicing stack updates for each operating system can be found in ADV990001. This list will be updated whenever a new servicing stack update is released. It is important to install the latest servicing stack update.
    • In addition to security changes for the vulnerabilities, updates include defense-in-depth updates to help improve security-related features.
    • Customers running Windows Server 2008 R2, or Windows Server 2008 need to purchase the Extended Security Update to continue receiving security updates. See 4522133 for more information.

    Known Issues


    KB Article Product
    5068779 Windows Server 2022, 23H2 Edition (Server Core installation)
    5068787 Windows Server 2022
    5068840 Windows Server 2022 Hotpatch
    5068906 Windows Server 2008 (Monthly Rollup)
    5068966 Windows Server 2025 Hotpatch
    5071726 Windows Server 2025
    5002800 SharePoint Server Subscription Edition
    5002803 SharePoint Server 2019
    5002805 SharePoint Server 2016


    Released: Nov 11, 2025

    November 2025 Security Updates - Release Notes - Security Update Guide - Microsoft
     
    NICK ADSL UK, Nov 11, 2025 at 1:16 PM
    #1
Thread Status:
Not open for further replies.

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds