Microsoft has released its Patch Tuesday updates for May 2025, addressing a total of 78 vulnerabilities across its product ecosystem, with five identified as actively exploited zero-day flaws.
The updates affect products including Windows, Microsoft Office, Azure, Visual Studio, and more. Users and system administrators are strongly urged to apply these patches immediately.
𧩠Vulnerability Breakdown
Out of 72 vulnerabilities, Microsoft addressed:
- π οΈ 29 Remote Code Execution
- β¬οΈ 18 Elevation of Privilege
- π 14 Information Disclosure
- π« 7 Denial of Service
- π΅οΈββοΈ 2 Spoofing
- 𧱠2 Security Feature Bypass
π₯ Actively Exploited Zero-Day Vulnerabilities
The five zero-days patched this month are:
1. CVE-2025-30397 (Microsoft Scripting Engine)
- CVSS Score: 7.5
- Impact: Remote Code Execution via malicious web content
- Status: Exploited in the wild
2. CVE-2025-30400 (Windows DWM)
- CVSS Score: 7.8
- Impact: Local Privilege Escalation
- Status: Actively exploited
3. CVE-2025-32701 (Windows Common Log File System Driver)
- CVSS Score: 7.8
- Impact: Privilege Escalation
- Status: Exploited
4. CVE-2025-32706 (Windows Common Log File System Driver)
- CVSS Score: 7.8
- Impact: Privilege Escalation
- Status: Exploited
5. CVE-2025-32709 (Windows Ancillary Function Driver for WinSock)
- CVSS Score: 7.8
- Impact: Privilege Escalation
- Status: Exploited
ποΈ Office and Windows Vulnerabilities
Multiple high-risk vulnerabilities were found in Office and Windows components:
CVE-2025-29976(SharePoint) β Elevation of PrivilegeCVE-2025-30393(Excel) β Remote Code ExecutionCVE-2025-24063(Windows Kernel) β βExploitation More Likelyβ
π Sample Vulnerability Table
| CVE Number | Component | Impact | Severity |
|---|---|---|---|
| CVE-2025-29966 | Remote Desktop Client | Remote Code Execution | Critical |
| CVE-2025-30377 | Microsoft Office | Remote Code Execution | Critical |
| CVE-2025-26684 | Microsoft Defender | Elevation of Privilege | Important |
| CVE-2025-29959 | RRAS | Information Disclosure | Important |
| CVE-2025-29968 | Active Directory Certificate Services | Denial of Service | Important |
| CVE-2025-29979 | Microsoft Excel | Remote Code Execution | Important |
| CVE-2025-26685 | Defender for Identity | Spoofing | Important |
| CVE-2025-32703 | Visual Studio | Information Disclosure | Important |
| CVE-2025-21264 | VS Code | Security Feature Bypass | Important |
π½ The full list includes 78 vulnerabilities. Visit the full article for the complete table:
Microsoft Patch Tuesday β May 2025
β Recommendations
- Update all Windows and Office installations ASAP
- Monitor your systems for CVE exploit indicators
- Use vulnerability scanners to verify patch deployment
- Stay informed about Microsoft Patch Tuesday updates every month
