Microsoft has released its June 2025 Patch Tuesday updates, addressing 66 vulnerabilities across its products. This update includes critical patches for a zero-day vulnerability actively exploited by the Stealth Falcon group, targeting defense organizations through Microsoft’s WebDAV service. A second zero-day vulnerability in the Windows SMB Client, though not yet exploited, poses a risk of privilege escalation. The update also fixes 10 critical vulnerabilities affecting various Microsoft applications, including Office and SharePoint, and core Windows components such as the KDC Proxy Service and Netlogon. Security experts emphasize the urgency of installing these updates, especially for systems exposed to the internet, to mitigate potential threats. Organizations are advised to prioritize patching and consider network segmentation as a defensive strategy.
Has Microsoft addressed critical vulnerabilities in its June 2025 Patch Tuesday update?
