Microsoft’s released its monthly Patch Tuesday update for March 2025 to fix 57 bugs across Windows, Office, Azure, and other Microsoft systems. Seven of the patches address zero-day vulnerabilities, six of which have been actively exploited. According to Bleeping Computer, this month’s update fixes 23 elevation of privilege flaws, three security feature bypass flaws, 23 remote code execution flaws, four information disclosure flaws, one denial of service flaw, and three spoofing flaws. Microsoft also released patches to numerous vulnerabilities in Mariner and Microsoft Edge this month. Patch Tuesday fixes for MarchSeven of the flaws fixed were zero-day vulnerabilities, which allow bad actors to exploit systems before an official patch is released by developers. In this case, six of the seven zero-day vulnerabilities were actively exploited, while one was publicly exposed—so it’s only a matter of time before actors exploit this seventh vulnerability, as well.Two of the six active exploits (CVE-2025-24985
Leave a Reply