April 2025 Security Updates

This release consists of the following 126 Microsoft CVEs:

Tag

CVE

Base Score

CVSS Vector

Exploitability

FAQs?

Workarounds?

Mitigations?

Visual Studio Code

CVE-2025-20570

6.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Standards-Based Storage Management Service

CVE-2025-21174

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Local Security Authority (LSA)

CVE-2025-21191

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows NTFS

CVE-2025-21197

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

Yes

Windows Routing and Remote Access Service (RRAS)

CVE-2025-21203

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Update Stack

CVE-2025-21204

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Telephony Service

CVE-2025-21205

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Telephony Service

CVE-2025-21221

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Telephony Service

CVE-2025-21222

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows DWM Core Library

CVE-2025-24058

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows DWM Core Library

CVE-2025-24060

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows DWM Core Library

CVE-2025-24062

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows DWM Core Library

CVE-2025-24073

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows DWM Core Library

CVE-2025-24074

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Edge (Chromium-based)

CVE-2025-25000

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Edge (Chromium-based)

CVE-2025-25001

4.3

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Azure Local Cluster

CVE-2025-25002

6.8

CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Azure Local Cluster

CVE-2025-26628

7.3

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Hello

CVE-2025-26635

6.5

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows BitLocker

CVE-2025-26637

6.8

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows USB Print Driver

CVE-2025-26639

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Digital Media

CVE-2025-26640

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Cryptographic Services

CVE-2025-26641

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Microsoft Office

CVE-2025-26642

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Hello

CVE-2025-26644

5.1

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Kerberos

CVE-2025-26647

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

Yes

Windows Kernel

CVE-2025-26648

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Secure Channel

CVE-2025-26649

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Local Session Manager (LSM)

CVE-2025-26651

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Standards-Based Storage Management Service

CVE-2025-26652

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows LDAP - Lightweight Directory Access Protocol

CVE-2025-26663

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26664

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows upnphost.dll

CVE-2025-26665

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Media

CVE-2025-26666

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26667

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26668

7.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26669

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows LDAP - Lightweight Directory Access Protocol

CVE-2025-26670

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows Remote Desktop Services

CVE-2025-26671

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26672

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows LDAP - Lightweight Directory Access Protocol

CVE-2025-26673

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Media

CVE-2025-26674

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Subsystem for Linux

CVE-2025-26675

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-26676

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Defender Application Control (WDAC)

CVE-2025-26678

8.4

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

RPC Endpoint Mapper Service

CVE-2025-26679

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Standards-Based Storage Management Service

CVE-2025-26680

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Win32K - GRFX

CVE-2025-26681

6.7

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

ASP.NET Core

CVE-2025-26682

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows TCP/IP

CVE-2025-26686

7.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Win32K - GRFX

CVE-2025-26687

7.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Virtual Hard Drive

CVE-2025-26688

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Digital Media

CVE-2025-27467

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows LDAP - Lightweight Directory Access Protocol

CVE-2025-27469

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Standards-Based Storage Management Service

CVE-2025-27470

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Microsoft Streaming Service

CVE-2025-27471

5.9

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Mark of the Web (MOTW)

CVE-2025-27472

5.4

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows HTTP.sys

CVE-2025-27473

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Routing and Remote Access Service (RRAS)

CVE-2025-27474

6.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Update Stack

CVE-2025-27475

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Digital Media

CVE-2025-27476

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Telephony Service

CVE-2025-27477

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Local Security Authority (LSA)

CVE-2025-27478

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Kerberos

CVE-2025-27479

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Remote Desktop Gateway Service

CVE-2025-27480

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows Telephony Service

CVE-2025-27481

8.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Remote Desktop Gateway Service

CVE-2025-27482

8.1

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows NTFS

CVE-2025-27483

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Universal Plug and Play (UPnP) Device Host

CVE-2025-27484

7.5

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Standards-Based Storage Management Service

CVE-2025-27485

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Windows Standards-Based Storage Management Service

CVE-2025-27486

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

No

No

No

Remote Desktop Client

CVE-2025-27487

8.0

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Azure Local

CVE-2025-27489

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Bluetooth Service

CVE-2025-27490

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Hyper-V

CVE-2025-27491

7.1

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Secure Channel

CVE-2025-27492

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Installer

CVE-2025-27727

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Windows Kernel-Mode Drivers

CVE-2025-27728

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Shell

CVE-2025-27729

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Digital Media

CVE-2025-27730

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

OpenSSH for Windows

CVE-2025-27731

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Win32K - GRFX

CVE-2025-27732

7.0

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows NTFS

CVE-2025-27733

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Virtualization-Based Security (VBS) Enclave

CVE-2025-27735

6.0

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Power Dependency Coordinator

CVE-2025-27736

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Security Zone Mapping

CVE-2025-27737

8.6

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Resilient File System (ReFS)

CVE-2025-27738

6.5

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

Yes

Windows Kernel

CVE-2025-27739

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Active Directory Certificate Services

CVE-2025-27740

8.8

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows NTFS

CVE-2025-27741

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows NTFS

CVE-2025-27742

5.5

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

System Center

CVE-2025-27743

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-27744

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-27745

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-27746

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Word

CVE-2025-27747

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-27748

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-27749

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Excel

CVE-2025-27750

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Excel

CVE-2025-27751

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Excel

CVE-2025-27752

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-29791

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office

CVE-2025-29792

7.3

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Microsoft Office SharePoint

CVE-2025-29793

7.2

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Microsoft Office SharePoint

CVE-2025-29794

8.8

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Microsoft Edge for iOS

CVE-2025-29796

4.7

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N/E:P/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft AutoUpdate (MAU)

CVE-2025-29800

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft AutoUpdate (MAU)

CVE-2025-29801

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Visual Studio

CVE-2025-29802

7.3

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Visual Studio Tools for Applications and SQL Server Management Studio

CVE-2025-29803

7.3

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Visual Studio

CVE-2025-29804

7.3

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Outlook for Android

CVE-2025-29805

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Cryptographic Services

CVE-2025-29808

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Kerberos

CVE-2025-29809

7.1

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N/E:U/RC:C

Exploitation More Likely

Yes

No

No

Active Directory Domain Services

CVE-2025-29810

7.5

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Mobile Broadband

CVE-2025-29811

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Kernel Memory

CVE-2025-29812

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation More Likely

Yes

No

No

Microsoft Edge (Chromium-based)

CVE-2025-29815

7.6

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Word

CVE-2025-29816

7.5

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Power Automate

CVE-2025-29817

5.7

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Azure Portal Windows Admin Center

CVE-2025-29819

6.2

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Word

CVE-2025-29820

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Dynamics Business Central

CVE-2025-29821

5.5

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office OneNote

CVE-2025-29822

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Microsoft Office Excel

CVE-2025-29823

7.8

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

Exploitation Less Likely

Yes

No

No

Windows Common Log File System Driver

CVE-2025-29824

7.8

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

Exploitation Detected

Yes

No

No