Microsoft Patch Tuesday: March 2025
|
Description |
|||||||
|---|---|---|---|---|---|---|---|
|
CVE |
Disclosed |
Exploited |
Exploitability (old versions) |
current version |
Severity |
CVSS Base (AVG) |
CVSS Temporal (AVG) |
|
ASP.NET Core and Visual Studio Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.0 |
6.1 |
|
|
Azure Agent Installer for Backup and Site Recovery Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
6.7 |
5.8 |
|
|
Azure Arc Installer Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.0 |
6.1 |
|
|
Azure Command Line Integration (CLI) Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
8.4 |
7.3 |
|
|
Azure Promptflow Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
6.5 |
5.7 |
|
|
DirectX Graphics Kernel File Denial of Service Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
4.4 |
3.9 |
|
|
Kernel Streaming Service Driver Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
MapUrlToZone Security Feature Bypass Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
4.3 |
3.9 |
|
|
Microsoft Access Remote Code Execution Vulnerability |
|||||||
|
Yes |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Microsoft Edge (Chromium-based) Spoofing Vulnerability |
|||||||
|
No |
No |
Less Likely |
Less Likely |
Low |
5.4 |
4.7 |
|
|
Microsoft Excel Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Microsoft Local Security Authority (LSA) Server Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Microsoft Management Console Security Feature Bypass Vulnerability |
|||||||
|
No |
Yes |
- |
- |
Important |
7.0 |
6.5 |
|
|
Microsoft Office Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Critical |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.3 |
6.4 |
|
|
No |
No |
- |
- |
Important |
7.3 |
6.4 |
|
|
Microsoft Windows File Explorer Spoofing Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.5 |
6.5 |
|
|
Microsoft Word Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.0 |
6.1 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
NTLM Hash Disclosure Spoofing Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
6.5 |
5.7 |
|
|
No |
No |
- |
- |
Important |
6.5 |
5.7 |
|
|
Remote Desktop Client Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Critical |
8.8 |
7.7 |
|
|
Synaptics: CVE-2024-9157 Synaptics Service Binaries DLL Loading Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
|
|
|
|
Visual Studio Code Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.3 |
6.4 |
|
|
Visual Studio Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.3 |
6.4 |
|
|
No |
No |
- |
- |
Important |
7.3 |
6.4 |
|
|
WinDbg Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.5 |
6.5 |
|
|
Windows Domain Name Service Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Critical |
8.1 |
7.1 |
|
|
Windows Common Log File System Driver Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Windows Fast FAT File System Driver Remote Code Execution Vulnerability |
|||||||
|
No |
Yes |
- |
- |
Important |
7.8 |
7.2 |
|
|
Windows Hyper-V Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Windows Mark of the Web Security Feature Bypass Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
Windows NTFS Information Disclosure Vulnerability |
|||||||
|
No |
Yes |
- |
- |
Important |
4.6 |
4.3 |
|
|
No |
Yes |
- |
- |
Important |
5.5 |
5.1 |
|
|
No |
No |
- |
- |
Important |
5.5 |
4.8 |
|
|
Windows NTFS Remote Code Execution Vulnerability |
|||||||
|
No |
Yes |
- |
- |
Important |
7.8 |
7.2 |
|
|
Windows Remote Desktop Services Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Critical |
8.1 |
7.1 |
|
|
No |
No |
- |
- |
Critical |
8.1 |
7.1 |
|
|
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
8.8 |
7.7 |
|
|
Windows Server Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.1 |
6.2 |
|
|
Windows Subsystem for Linux (WSL2) Kernel Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Critical |
8.4 |
7.3 |
|
|
Windows Telephony Service Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
8.8 |
7.7 |
|
|
Windows USB Video Class System Driver Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
6.6 |
5.8 |
|
|
No |
No |
- |
- |
Important |
6.6 |
5.8 |
|
|
Windows USB Video Class System Driver Information Disclosure Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
4.3 |
3.8 |
|
|
Windows Win32 Kernel Subsystem Elevation of Privilege Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|
|
No |
Yes |
- |
- |
Important |
7.0 |
6.5 |
|
|
Windows exFAT File System Remote Code Execution Vulnerability |
|||||||
|
No |
No |
- |
- |
Important |
7.8 |
6.8 |
|