CVE-2025-27491 Windows Hyper-V Remote Code Execution Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27491

CVE-2025-27489 Azure Local Elevation of Privilege Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27489

CVE-2025-27487 Remote Desktop Client Remote Code Execution Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27487

CVE-2025-27483 NTFS Elevation of Privilege Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27483

CVE-2025-27481 Windows Telephony Service Remote Code Execution Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27481

CVE-2025-27484 Windows Universal Plug and Play (UPnP) Device Host Elevation of Privilege Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27484

CVE-2025-27469 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27469

CVE-2025-26679 RPC Endpoint Mapper Service Elevation of Privilege Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26679

CVE-2025-26673 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26673

CVE-2025-26672 Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26672

CVE-2025-26670 Lightweight Directory Access Protocol (LDAP) Client Remote Code Execution Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26670

CVE-2025-26648 Windows Kernel Elevation of Privilege Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26648

CVE-2025-26641 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability

The security updates for Windows 10 for 32-bit Systems and Windows 10 for x64-based Systems are now available. See the Security Updates table for more information.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26641

CVE-2025-21174 Windows Standards-Based Storage Management Service Denial of Service Vulnerability

Acknowledgement added. This is an informational change only.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-21174

CVE-2025-29816 Microsoft Word Security Feature Bypass Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29816

CVE-2025-26642 Microsoft Office Remote Code Execution Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26642

CVE-2025-29817 Microsoft Power Automate Desktop Information Disclosure Vulnerability

Uncontrolled search path element in Power Automate allows an authorized attacker to disclose information over a network.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29817

CVE-2025-29822 Microsoft OneNote Security Feature Bypass Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29822

CVE-2025-29820 Microsoft Word Remote Code Execution Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29820

CVE-2025-29791 Microsoft Excel Remote Code Execution Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-29791

CVE-2025-27750 Microsoft Excel Remote Code Execution Vulnerability

Microsoft is announcing the availability of the security updates for Microsoft Office for Mac. Customers running affected Mac software should install the update for their product to be protected from this vulnerability. Customers running other Microsoft Office software do not need to take any action. See the [Release Notes](https://go.microsoft.com/fwlink/p/?linkid=831049) for more information and download links.

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-27750