Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws

April 8, 2025

Tag CVE ID CVE Title Severity Energetic Listing Area Companies CVE-2025-29810 Energetic Listing Area Companies Elevation of Privilege Vulnerability Essential ASP.NET Core CVE-2025-26682 ASP.NET Core and Visible Studio Denial of Service Vulnerability Essential Azure Native CVE-2025-27489 Azure Native Elevation of Privilege Vulnerability Essential Azure Native Cluster CVE-2025-26628 Azure Native Cluster Data Disclosure Vulnerability Essential Azure Native Cluster CVE-2025-25002 Azure Native Cluster Data Disclosure Vulnerability Essential Azure Portal Home windows Admin Heart CVE-2025-29819 Home windows Admin Heart in Azure Portal Data Disclosure Vulnerability Essential Dynamics Enterprise Central CVE-2025-29821 Microsoft Dynamics Enterprise Central Data Disclosure Vulnerability Essential Microsoft AutoUpdate (MAU) CVE-2025-29800 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability Essential Microsoft AutoUpdate (MAU) CVE-2025-29801 Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability Essential Microsoft Edge (Chromium-based) CVE-2025-3073 Chromium: CVE-2025-3073 Inappropriate implementation in Autofill Unknown Microsoft Edge (Chromium-based) CVE-2025-3068 Chromium: CVE-2025-3068 Inappropriate implementation in Intents Unknown Microsoft Edge (Chromium-based) CVE-2025-3074 Chromium: CVE-2025-3074 Inappropriate implementation in Downloads Unknown Microsoft Edge (Chromium-based) CVE-2025-3067 Chromium: CVE-2025-3067 Inappropriate implementation in Customized Tabs Unknown Microsoft Edge (Chromium-based) CVE-2025-3071 Chromium: CVE-2025-3071 Inappropriate implementation in Navigations Unknown Microsoft Edge (Chromium-based) CVE-2025-3072 Chromium: CVE-2025-3072 Inappropriate implementation in Customized Tabs Unknown Microsoft Edge (Chromium-based) CVE-2025-3070 Chromium: CVE-2025-3070 Inadequate validation of untrusted enter in Extensions Unknown Microsoft Edge (Chromium-based) CVE-2025-3069 Chromium: CVE-2025-3069 Inappropriate implementation in Extensions Unknown Microsoft Edge (Chromium-based) CVE-2025-25000 Microsoft Edge (Chromium-based) Distant Code Execution Vulnerability Essential Microsoft Edge (Chromium-based) CVE-2025-29815 Microsoft Edge (Chromium-based) Distant Code Execution Vulnerability Essential Microsoft Edge (Chromium-based) CVE-2025-25001 Microsoft Edge for iOS Spoofing Vulnerability Low Microsoft Edge (Chromium-based) CVE-2025-3066 Chromium: CVE-2025-3066 Use after free in Navigations Unknown Microsoft Edge for iOS CVE-2025-29796 Microsoft Edge for iOS Spoofing Vulnerability Low Microsoft Workplace CVE-2025-27745 Microsoft Workplace Distant Code Execution Vulnerability Important Microsoft Workplace CVE-2025-27744 Microsoft Workplace Elevation of Privilege Vulnerability Essential Microsoft Workplace CVE-2025-26642 Microsoft Workplace Distant Code Execution Vulnerability Essential Microsoft Workplace CVE-2025-29792 Microsoft Workplace Elevation of Privilege Vulnerability Essential Microsoft Workplace CVE-2025-29791 Microsoft Excel Distant Code Execution Vulnerability Important Microsoft Workplace CVE-2025-27748 Microsoft Workplace Distant Code Execution Vulnerability Important Microsoft Workplace CVE-2025-27746 Microsoft Workplace Distant Code Execution Vulnerability Essential Microsoft Workplace CVE-2025-27749 Microsoft Workplace Distant Code Execution Vulnerability Important Microsoft Workplace Excel CVE-2025-27751 Microsoft Excel Distant Code Execution Vulnerability Essential Microsoft Workplace Excel CVE-2025-27750 Microsoft Excel Distant Code Execution Vulnerability Essential Microsoft Workplace Excel CVE-2025-29823 Microsoft Excel Distant Code Execution Vulnerability Essential Microsoft Workplace Excel CVE-2025-27752 Microsoft Excel Distant Code Execution Vulnerability Important Microsoft Workplace OneNote CVE-2025-29822 Microsoft OneNote Safety Characteristic Bypass Vulnerability Essential Microsoft Workplace SharePoint CVE-2025-29794 Microsoft SharePoint Distant Code Execution Vulnerability Essential Microsoft Workplace SharePoint CVE-2025-29793 Microsoft SharePoint Distant Code Execution Vulnerability Essential Microsoft Workplace Phrase CVE-2025-27747 Microsoft Phrase Distant Code Execution Vulnerability Essential Microsoft Workplace Phrase CVE-2025-29816 Microsoft Phrase Safety Characteristic Bypass Vulnerability Essential Microsoft Workplace Phrase CVE-2025-29820 Microsoft Phrase Distant Code Execution Vulnerability Essential Microsoft Streaming Service CVE-2025-27471 Microsoft Streaming Service Denial of Service Vulnerability Essential Microsoft Digital Arduous Drive CVE-2025-26688 Microsoft Digital Arduous Disk Elevation of Privilege Vulnerability Essential OpenSSH for Home windows CVE-2025-27731 Microsoft OpenSSH for Home windows Elevation of Privilege Vulnerability Essential Outlook for Android CVE-2025-29805 Outlook for Android Data Disclosure Vulnerability Essential Distant Desktop Shopper CVE-2025-27487 Distant Desktop Shopper Distant Code Execution Vulnerability Essential Distant Desktop Gateway Service CVE-2025-27482 Home windows Distant Desktop Companies Distant Code Execution Vulnerability Important Distant Desktop Gateway Service CVE-2025-27480 Home windows Distant Desktop Companies Distant Code Execution Vulnerability Important RPC Endpoint Mapper Service CVE-2025-26679 RPC Endpoint Mapper Service Elevation of Privilege Vulnerability Essential System Heart CVE-2025-27743 Microsoft System Heart Elevation of Privilege Vulnerability Essential Visible Studio CVE-2025-29802 Visible Studio Elevation of Privilege Vulnerability Essential Visible Studio CVE-2025-29804 Visible Studio Elevation of Privilege Vulnerability Essential Visible Studio Code CVE-2025-20570 Visible Studio Code Elevation of Privilege Vulnerability Essential Visible Studio Instruments for Purposes and SQL Server Administration Studio CVE-2025-29803 Visible Studio Instruments for Purposes and SQL Server Administration Studio Elevation of Privilege Vulnerability Essential Home windows Energetic Listing Certificates Companies CVE-2025-27740 Energetic Listing Certificates Companies Elevation of Privilege Vulnerability Essential Home windows BitLocker CVE-2025-26637 BitLocker Safety Characteristic Bypass Vulnerability Essential Home windows Bluetooth Service CVE-2025-27490 Home windows Bluetooth Service Elevation of Privilege Vulnerability Essential Home windows Frequent Log File System Driver CVE-2025-29824 Home windows Frequent Log File System Driver Elevation of Privilege Vulnerability Essential Home windows Cryptographic Companies CVE-2025-29808 Home windows Cryptographic Companies Data Disclosure Vulnerability Essential Home windows Cryptographic Companies CVE-2025-26641 Microsoft Message Queuing (MSMQ) Denial of Service Vulnerability Essential Home windows Defender Utility Management (WDAC) CVE-2025-26678 Home windows Defender Utility Management Safety Characteristic Bypass Vulnerability Essential Home windows Digital Media CVE-2025-27730 Home windows Digital Media Elevation of Privilege Vulnerability Essential Home windows Digital Media CVE-2025-27467 Home windows Digital Media Elevation of Privilege Vulnerability Essential Home windows Digital Media CVE-2025-26640 Home windows Digital Media Elevation of Privilege Vulnerability Essential Home windows Digital Media CVE-2025-27476 Home windows Digital Media Elevation of Privilege Vulnerability Essential Home windows DWM Core Library CVE-2025-24074 Microsoft DWM Core Library Elevation of Privilege Vulnerability Essential Home windows DWM Core Library CVE-2025-24073 Microsoft DWM Core Library Elevation of Privilege Vulnerability Essential Home windows DWM Core Library CVE-2025-24058 Home windows DWM Core Library Elevation of Privilege Vulnerability Essential Home windows DWM Core Library CVE-2025-24062 Microsoft DWM Core Library Elevation of Privilege Vulnerability Essential Home windows DWM Core Library CVE-2025-24060 Microsoft DWM Core Library Elevation of Privilege Vulnerability Essential Home windows Whats up CVE-2025-26635 Home windows Whats up Safety Characteristic Bypass Vulnerability Essential Home windows Whats up CVE-2025-26644 Home windows Whats up Spoofing Vulnerability Essential Home windows HTTP.sys CVE-2025-27473 HTTP.sys Denial of Service Vulnerability Essential Home windows Hyper-V CVE-2025-27491 Home windows Hyper-V Distant Code Execution Vulnerability Important Home windows Installer CVE-2025-27727 Home windows Installer Elevation of Privilege Vulnerability Essential Home windows Kerberos CVE-2025-26647 Home windows Kerberos Elevation of Privilege Vulnerability Essential Home windows Kerberos CVE-2025-27479 Kerberos Key Distribution Proxy Service Denial of Service Vulnerability Essential Home windows Kerberos CVE-2025-29809 Home windows Kerberos Safety Characteristic Bypass Vulnerability Essential Home windows Kernel CVE-2025-26648 Home windows Kernel Elevation of Privilege Vulnerability Essential Home windows Kernel CVE-2025-27739 Home windows Kernel Elevation of Privilege Vulnerability Essential Home windows Kernel Reminiscence CVE-2025-29812 DirectX Graphics Kernel Elevation of Privilege Vulnerability Essential Home windows Kernel-Mode Drivers CVE-2025-27728 Home windows Kernel-Mode Driver Elevation of Privilege Vulnerability Essential Home windows LDAP – Light-weight Listing Entry Protocol CVE-2025-26673 Home windows Light-weight Listing Entry Protocol (LDAP) Denial of Service Vulnerability Essential Home windows LDAP – Light-weight Listing Entry Protocol CVE-2025-26663 Home windows Light-weight Listing Entry Protocol (LDAP) Distant Code Execution Vulnerability Important Home windows LDAP – Light-weight Listing Entry Protocol CVE-2025-27469 Home windows Light-weight Listing Entry Protocol (LDAP) Denial of Service Vulnerability Essential Home windows LDAP – Light-weight Listing Entry Protocol CVE-2025-26670 Light-weight Listing Entry Protocol (LDAP) Shopper Distant Code Execution Vulnerability Important Home windows Native Safety Authority (LSA) CVE-2025-21191 Home windows Native Safety Authority (LSA) Elevation of Privilege Vulnerability Essential Home windows Native Safety Authority (LSA) CVE-2025-27478 Home windows Native Safety Authority (LSA) Elevation of Privilege Vulnerability Essential Home windows Native Session Supervisor (LSM) CVE-2025-26651 Home windows Native Session Supervisor (LSM) Denial of Service Vulnerability Essential Home windows Mark of the Net (MOTW) CVE-2025-27472 Home windows Mark of the Net Safety Characteristic Bypass Vulnerability Essential Home windows Media CVE-2025-26666 Home windows Media Distant Code Execution Vulnerability Essential Home windows Media CVE-2025-26674 Home windows Media Distant Code Execution Vulnerability Essential Home windows Cellular Broadband CVE-2025-29811 Home windows Cellular Broadband Driver Elevation of Privilege Vulnerability Essential Home windows NTFS CVE-2025-27742 NTFS Data Disclosure Vulnerability Essential Home windows NTFS CVE-2025-21197 Home windows NTFS Data Disclosure Vulnerability Essential Home windows NTFS CVE-2025-27741 NTFS Elevation of Privilege Vulnerability Essential Home windows NTFS CVE-2025-27483 NTFS Elevation of Privilege Vulnerability Essential Home windows NTFS CVE-2025-27733 NTFS Elevation of Privilege Vulnerability Essential Home windows Energy Dependency Coordinator CVE-2025-27736 Home windows Energy Dependency Coordinator Data Disclosure Vulnerability Essential Home windows Distant Desktop Companies CVE-2025-26671 Home windows Distant Desktop Companies Distant Code Execution Vulnerability Essential Home windows Resilient File System (ReFS) CVE-2025-27738 Home windows Resilient File System (ReFS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-27474 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-21203 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26668 Home windows Routing and Distant Entry Service (RRAS) Distant Code Execution Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26667 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26664 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26672 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26669 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Routing and Distant Entry Service (RRAS) CVE-2025-26676 Home windows Routing and Distant Entry Service (RRAS) Data Disclosure Vulnerability Essential Home windows Safe Channel CVE-2025-27492 Home windows Safe Channel Elevation of Privilege Vulnerability Essential Home windows Safe Channel CVE-2025-26649 Home windows Safe Channel Elevation of Privilege Vulnerability Essential Home windows Safety Zone Mapping CVE-2025-27737 Home windows Safety Zone Mapping Safety Characteristic Bypass Vulnerability Essential Home windows Shell CVE-2025-27729 Home windows Shell Distant Code Execution Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-27485 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-27486 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-21174 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-26680 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-27470 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Requirements-Primarily based Storage Administration Service CVE-2025-26652 Home windows Requirements-Primarily based Storage Administration Service Denial of Service Vulnerability Essential Home windows Subsystem for Linux CVE-2025-26675 Home windows Subsystem for Linux Elevation of Privilege Vulnerability Essential Home windows TCP/IP CVE-2025-26686 Home windows TCP/IP Distant Code Execution Vulnerability Important Home windows Telephony Service CVE-2025-27481 Home windows Telephony Service Distant Code Execution Vulnerability Essential Home windows Telephony Service CVE-2025-21222 Home windows Telephony Service Distant Code Execution Vulnerability Essential Home windows Telephony Service CVE-2025-21205 Home windows Telephony Service Distant Code Execution Vulnerability Essential Home windows Telephony Service CVE-2025-21221 Home windows Telephony Service Distant Code Execution Vulnerability Essential Home windows Telephony Service CVE-2025-27477 Home windows Telephony Service Distant Code Execution Vulnerability Essential Home windows Common Plug and Play (UPnP) Gadget Host CVE-2025-27484 Home windows Common Plug and Play (UPnP) Gadget Host Elevation of Privilege Vulnerability Essential Home windows Replace Stack CVE-2025-21204 Home windows Course of Activation Elevation of Privilege Vulnerability Essential Home windows Replace Stack CVE-2025-27475 Home windows Replace Stack Elevation of Privilege Vulnerability Essential Home windows upnphost.dll CVE-2025-26665 Home windows upnphost.dll Elevation of Privilege Vulnerability Essential Home windows USB Print Driver CVE-2025-26639 Home windows USB Print Driver Elevation of Privilege Vulnerability Essential Home windows Virtualization-Primarily based Safety (VBS) Enclave CVE-2025-27735 Home windows Virtualization-Primarily based Safety (VBS) Safety Characteristic Bypass Vulnerability Essential Home windows Win32K – GRFX CVE-2025-27732 Home windows Graphics Element Elevation of Privilege Vulnerability Essential Home windows Win32K – GRFX CVE-2025-26687 Win32k Elevation of Privilege Vulnerability Essential Home windows Win32K – GRFX CVE-2025-26681 Win32k Elevation of Privilege Vulnerability Essential

- Advertisment -

Microsoft April 2025 Patch Tuesday fixes exploited zero-day, 134 flaws

Ivanti patches two actively exploited crucial vulnerabilities in EPMM

SmarterMail Fixes Important Unauthenticated RCE Flaw with CVSS 9.3 Rating

Two Ivanti EPMM Zero-Day RCE Flaws Actively Exploited, Safety Updates Launched

LEAVE A REPLY Cancel reply

Most Popular

PixieFail flaws affect PXE community boot in enterprise techniques

PixieFail UEFI Flaws Expose Tens of millions of Computer systems to RCE, DoS, and Data Theft

New Marvin assault revives 25-year-old decryption flaw in RSA

Why Instagram Threads is a hotbed of dangers for companies

1000’s of Juniper gadgets susceptible to unauthenticated RCE flaw

Phishing Campaigns Ship New SideTwist Backdoor and Agent Tesla Variant

Prospects warned to cancel bank cards

EDITOR PICKS

E.U. Sanctions 3 Russian Nationals for Cyber Attacks Concentrating on Estonia’s Key Ministries

Exploitation of Crucial Confluence Vulnerability Begins

Immersive Labs provides customized ‘workforce exercising’ for every organizational position

POPULAR News

PixieFail flaws affect PXE community boot in enterprise techniques

PixieFail UEFI Flaws Expose Tens of millions of Computer systems to RCE, DoS, and Data Theft

New Marvin assault revives 25-year-old decryption flaw in RSA

POPULAR TAGS

POPULAR Tags

POPULAR Tags

ABOUT US

FOLLOW US