Microsoft released September 2025 patches addressing 86 CVEs, including three critical Windows kernel vulnerabilities with high exploitation risks. These updates also fix flaws in Edge, SQL Server, and other vendor software, emphasizing the importance of timely patching. #WindowsKernel #CVE2025-54110
Keypoints
- September 2025 Patch Tuesday includes fixes for 86 CVEs, eight of which are high risk.
- Three Windows kernel flaws with CVSS scores up to 8.8 pose significant exploitation risks.
- CVE-2025-54110 allows privilege escalation through kernel buffer overflow.
- Other high-risk vulnerabilities include issues in NTLM, SMB, NTFS, Hyper-V, and TCP/IP driver.
- Critical updates were also issued for Adobe, SAP, and Ivanti software.
Read More: https://thecyberexpress.com/microsoft-patch-tuesday-september-2025/