Microsoft fixed over 60 flaws, including an actively exploited Windows kernel zero-day, in its latest Patch Tuesday updates.
Microsoft’s Patch Tuesday security updates for November 2025 addressed 63 vulnerabilities impacting Windows and Windows Components, Office and Office Components, Microsoft Edge (Chromium-based), Azure Monitor Agent, Dynamics 365, Hyper-V, SQL Server, and the Windows Subsystem for Linux GUI.
Four of these vulnerabilities are rated as Critical and 59 are rated Important in severity. None of the vulnerabilities addressed this month was publicly known at the time of release.
“This release is a far cry from the 177 CVEs we saw last month, although I don’t think anyone will complain.” reads the post published by ZDI. “This drop could also be due to the fact that this is the first month where Windows 10 is not receiving updates. We will see what December brings and how close we end up to the record total of CVEs set back in 2020. “
Microsoft warns that a Windows Kernel Elevation of Privilege Vulnerability, tracked as CVE-2025-62215 (CVSS score of 7), has been under active attack.
“Concurrent execution using shared resource with improper synchronization (‘race condition’) in Windows Kernel allows an authorized attacker to elevate privileges locally.” reads the advisory. “Successful exploitation of this vulnerability requires an attacker to win a race condition. An attacker who successfully exploited this vulnerability could gain SYSTEM privileges.”
Microsoft also addressed an Office Remote Code Execution Vulnerability tracked as CVE-2025-62199. The issue is a use after free in Microsoft Office that allows an unauthorized attacker to execute code locally.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Patch Tuesday)
