Microsoft September 2025 Patch Tuesday – 81 Vulnerabilities and 2 Zero Days Fixed
gbhackersMicrosoft has released its September 2025 Patch Tuesday update, addressing a total of 81 security vulnerabilities across its product portfolio.
This extensive release includes fixes for two zero-day vulnerabilities that are actively being exploited. Among the patched flaws, ten are rated as “Critical,” while the remaining 71 are classified as “Important.”
The updates cover a wide range of products, including Windows, Microsoft Office, Azure, SQL Server, and Windows Defender.
| Impact | Count |
|---|---|
| Elevation of Privilege (EoP) | 38 |
| Remote Code Execution (RCE) | 22 |
| Information Disclosure | 14 |
| Denial of Service (DoS) | 4 |
| Security Feature Bypass | 2 |
| Spoofing | 1 |
| Total | 81 |
Zero-Day Flaws Patched
This month’s security release is particularly significant due to the inclusion of patches for two zero-day vulnerabilities. The first, CVE-2025-55234, is an Elevation of Privilege (EoP) vulnerability in the Windows Server Message Block (SMB) protocol.
According to Microsoft, an attacker who successfully exploits this flaw could execute relay attacks ...
Copyright of this story solely belongs to gbhackers . To see the full text click HERE