Microsoft Patch Tuesday December 2025, (Tue, Dec 9th)
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
This release addresses 57 vulnerabilities. 3 of these vulnerabilities are rated critical. One vulnerability was already exploited, and two were publicly disclosed before the patch was released.<\/p>\n
CVE-2025-62221: This privilege escalation vulnerability in the Microsoft Cloud Files Mini Filters driver is already being exploited.<\/p>\n
CVE-2025-54100: A PowerShell script using\u00a0Invoke-WebRequest may execute scripts that are included in the response. This is what Invoke-WebRequest is supposed to do. The patch adds a warning suggesting adding the\u00a0-UseBasicParsing parameter to avoid executing scripts.<\/p>\n
CVE-2025-64671: The GitHub Copilot plugin for JetBrains may lead to remote code execution. This is overall an issue with many AI code assistance as they have far-reaching access to the IDE.<\/p>\n
The critical vulnerabilities are remote code execution vulnerabilities in Office and Outlook.<\/p>\n
\u00a0<\/p>\n
| Description<\/th>\n<\/tr>\n | |||||||
|---|---|---|---|---|---|---|---|
| CVE<\/th>\n | Disclosed<\/th>\n | Exploited<\/th>\n | Exploitability (old versions)<\/th>\n | current version<\/th>\n | Severity<\/th>\n | CVSS Base (AVG)<\/th>\n | CVSS Temporal (AVG)<\/th>\n<\/tr>\n<\/thead>\n |
| Application Information Service Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62572%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Azure Monitor Agent Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62550%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.8<\/td>\n | 7.7<\/td>\n<\/tr>\n |
| DirectX Graphics Kernel Denial of Service Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62463%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 6.5<\/td>\n | 5.7<\/td>\n<\/tr>\n |
| %%cve:2025-62465%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 6.5<\/td>\n | 5.7<\/td>\n<\/tr>\n |
| DirectX Graphics Kernel Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62573%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.0<\/td>\n | 6.1<\/td>\n<\/tr>\n |
| GitHub Copilot for Jetbrains Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64671%%<\/td>\n | Yes<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.4<\/td>\n | 7.3<\/td>\n<\/tr>\n |
| Microsoft Access Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62552%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Microsoft Brokering File System Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62469%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.0<\/td>\n | 6.1<\/td>\n<\/tr>\n |
| %%cve:2025-62569%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.0<\/td>\n | 6.1<\/td>\n<\/tr>\n |
| Microsoft Edge (Chromium-based) for Mac Spoofing Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62223%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Low<\/td>\n | 4.3<\/td>\n | 3.8<\/td>\n<\/tr>\n |
| Microsoft Excel Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62561%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62563%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62564%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62553%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62556%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62560%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Microsoft Exchange Server Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64666%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.5<\/td>\n | 6.5<\/td>\n<\/tr>\n |
| Microsoft Exchange Server Spoofing Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64667%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 5.3<\/td>\n | 4.6<\/td>\n<\/tr>\n |
| Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62455%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Microsoft Office Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62554%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Critical<\/td>\n | 8.4<\/td>\n | 7.3<\/td>\n<\/tr>\n |
| %%cve:2025-62557%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Critical<\/td>\n | 8.4<\/td>\n | 7.3<\/td>\n<\/tr>\n |
| Microsoft Outlook Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62562%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Critical<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Microsoft SharePoint Server Spoofing Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64672%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.8<\/td>\n | 7.7<\/td>\n<\/tr>\n |
| Microsoft Word Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62555%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.0<\/td>\n | 6.1<\/td>\n<\/tr>\n |
| %%cve:2025-62558%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62559%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| PowerShell Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-54100%%<\/td>\n | Yes<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Win32k Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62458%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Camera Frame Server Monitor Information Disclosure Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62570%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.1<\/td>\n | 6.2<\/td>\n<\/tr>\n |
| Windows Client-Side Caching Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62466%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62454%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62457%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62221%%<\/td>\n | No<\/td>\n | Yes<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Common Log File System Driver Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62470%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows DWM Core Library Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64679%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-64680%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Defender Firewall Service Information Disclosure Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62468%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 4.4<\/td>\n | 3.9<\/td>\n<\/tr>\n |
| Windows DirectX Information Disclosure Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64670%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 6.5<\/td>\n | 5.7<\/td>\n<\/tr>\n |
| Windows File Explorer Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64658%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.5<\/td>\n | 6.5<\/td>\n<\/tr>\n |
| %%cve:2025-62565%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.3<\/td>\n | 6.4<\/td>\n<\/tr>\n |
| Windows Hyper-V Denial of Service Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62567%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 5.3<\/td>\n | 4.6<\/td>\n<\/tr>\n |
| Windows Installer Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62571%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Projected File System Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62461%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62462%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62464%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-55233%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62467%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Remote Access Connection Manager Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62472%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-62474%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Resilient File System (ReFS) Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62456%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.8<\/td>\n | 7.7<\/td>\n<\/tr>\n |
| Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62473%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 6.5<\/td>\n | 5.7<\/td>\n<\/tr>\n |
| Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-62549%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.8<\/td>\n | 7.7<\/td>\n<\/tr>\n |
| %%cve:2025-64678%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 8.8<\/td>\n | 7.7<\/td>\n<\/tr>\n |
| Windows Shell Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64661%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| Windows Storage VSP Driver Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n | |||||||
| %%cve:2025-64673%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-59516%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n |
| %%cve:2025-59517%%<\/td>\n | No<\/td>\n | No<\/td>\n | –<\/td>\n | –<\/td>\n | Important<\/td>\n | 7.8<\/td>\n | 6.8<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n — (c) SANS Internet Storm Center. https:\/\/isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.<\/p><\/div>\n \t |