Patch Tuesday Archive
Patch Tuesday September 2025
Total CVEs
86
Critical
13
Important
72
Exploited
0
Publicly Disclosed
1
All CVEs this month 86
| CVE | Title | Severity | CVSS | Product | Exploited | Disclosed |
|---|---|---|---|---|---|---|
| CVE-2025-53799 | Windows Imaging Component Information Disclosure Vulnerability | Critical | 5.5 |
Windows Imaging Component | - | - |
| CVE-2025-53800 | Windows Graphics Component Elevation of Privilege Vulnerability | Critical | 7.8 |
Microsoft Graphics Component | - | - |
| CVE-2025-54910 | Microsoft Office Remote Code Execution Vulnerability | Critical | 8.4 |
Microsoft Office | - | - |
| CVE-2025-54914 | Azure Networking Elevation of Privilege Vulnerability | Critical | 10 |
Azure - Networking | - | - |
| CVE-2025-54918 | Windows NTLM Elevation of Privilege Vulnerability | Critical | 8.8 |
Windows NTLM | - | - |
| CVE-2025-55224 | Windows Hyper-V Remote Code Execution Vulnerability | Critical | 7.8 |
Windows Win32K - GRFX | - | - |
| CVE-2025-55226 | Graphics Kernel Remote Code Execution Vulnerability | Critical | 6.7 |
Graphics Kernel | - | - |
| CVE-2025-55228 | Windows Graphics Component Remote Code Execution Vulnerability | Critical | 7.8 |
Windows Win32K - GRFX | - | - |
| CVE-2025-55236 | Graphics Kernel Remote Code Execution Vulnerability | Critical | 7.3 |
Graphics Kernel | - | - |
| CVE-2025-55238 | Dynamics 365 FastTrack Implementation Assets Information Disclosure Vulnerability | Critical | 7.5 |
Dynamics 365 FastTrack Implementation Assets | - | - |
| CVE-2025-55241 | Azure Entra Elevation of Privilege Vulnerability | Critical | 9 |
Azure Entra | - | - |
| CVE-2025-55242 | Xbox Certification Bug Copilot Djando Information Disclosure Vulnerability | Critical | 6.5 |
Xbox | - | - |
| CVE-2025-55244 | Azure Bot Service Elevation of Privilege Vulnerability | Critical | 9 |
Azure Bot Service | - | - |
| CVE-2025-47997 | Microsoft SQL Server Information Disclosure Vulnerability | Important | 6.5 |
SQL Server | - | - |
| CVE-2025-49692 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | Important | 7.8 |
Azure Windows Virtual Machine Agent | - | - |
| CVE-2025-49734 | PowerShell Direct Elevation of Privilege Vulnerability | Important | 7 |
Windows PowerShell | - | - |
| CVE-2025-53796 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-53797 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-53798 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-53801 | Microsoft DWM Core Library Elevation of Privilege Vulnerability | Important | 7.8 |
Windows DWM | - | - |
| CVE-2025-53802 | Windows Bluetooth Service Elevation of Privilege Vulnerability | Important | 7 |
Windows Bluetooth Service | - | - |
| CVE-2025-53803 | Windows Kernel Memory Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - |
| CVE-2025-53804 | Windows Kernel-Mode Driver Information Disclosure Vulnerability | Important | 5.5 |
Windows Kernel | - | - |
| CVE-2025-53805 | HTTP.sys Denial of Service Vulnerability | Important | 7.5 |
Windows Internet Information Services | - | - |
| CVE-2025-53806 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-53807 | Windows Graphics Component Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Graphics Component | - | - |
| CVE-2025-53808 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-53809 | Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability | Important | 6.5 |
Windows Local Security Authority Subsystem Service (LSASS) | - | - |
| CVE-2025-53810 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-54091 | Windows Hyper-V Elevation of Privilege Vulnerability | Important | 7.8 |
Role: Windows Hyper-V | - | - |
| CVE-2025-54092 | Windows Hyper-V Elevation of Privilege Vulnerability | Important | 7.8 |
Role: Windows Hyper-V | - | - |
| CVE-2025-54093 | Windows TCP/IP Driver Elevation of Privilege Vulnerability | Important | 7 |
Windows TCP/IP | - | - |
| CVE-2025-54094 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-54095 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-54096 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-54097 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-54098 | Windows Hyper-V Elevation of Privilege Vulnerability | Important | 7.8 |
Role: Windows Hyper-V | - | - |
| CVE-2025-54099 | Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability | Important | 7 |
Windows Ancillary Function Driver for WinSock | - | - |
| CVE-2025-54101 | Windows SMB Client Remote Code Execution Vulnerability | Important | 4.8 |
Windows SMBv3 Client | - | - |
| CVE-2025-54102 | Windows Connected Devices Platform Service Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Connected Devices Platform Service | - | - |
| CVE-2025-54103 | Windows Management Service Elevation of Privilege Vulnerability | Important | 7.4 |
Windows Management Services | - | - |
| CVE-2025-54104 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-54105 | Microsoft Brokering File System Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Brokering File System | - | - |
| CVE-2025-54106 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Important | 8.8 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-54107 | MapUrlToZone Security Feature Bypass Vulnerability | Important | 4.3 |
Windows MapUrlToZone | - | - |
| CVE-2025-54108 | Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability | Important | 7 |
Capability Access Management Service (camsvc) | - | - |
| CVE-2025-54109 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-54110 | Windows Kernel Elevation of Privilege Vulnerability | Important | 8.8 |
Windows Kernel | - | - |
| CVE-2025-54111 | Windows UI XAML Phone DatePickerFlyout Elevation of Privilege Vulnerability | Important | 7.8 |
Windows UI XAML Phone DatePickerFlyout | - | - |
| CVE-2025-54112 | Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability | Important | 7 |
Microsoft Virtual Hard Drive | - | - |
| CVE-2025-54113 | Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability | Important | 8.8 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-54114 | Windows Connected Devices Platform Service (Cdpsvc) Denial of Service Vulnerability | Important | 7 |
Windows Connected Devices Platform Service | - | - |
| CVE-2025-54115 | Windows Hyper-V Elevation of Privilege Vulnerability | Important | 7 |
Role: Windows Hyper-V | - | - |
| CVE-2025-54116 | Windows MultiPoint Services Elevation of Privilege Vulnerability | Important | 7.3 |
Windows MultiPoint Services | - | - |
| CVE-2025-54894 | Local Security Authority Subsystem Service Elevation of Privilege Vulnerability | Important | 7.8 |
Windows Local Security Authority Subsystem Service (LSASS) | - | - |
| CVE-2025-54895 | SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege Vulnerability | Important | 7.8 |
Windows SPNEGO Extended Negotiation | - | - |
| CVE-2025-54896 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54897 | Microsoft SharePoint Remote Code Execution Vulnerability | Important | 8.8 |
Microsoft Office SharePoint | - | - |
| CVE-2025-54898 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54899 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54900 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54901 | Microsoft Excel Information Disclosure Vulnerability | Important | 5.5 |
Microsoft Office Excel | - | - |
| CVE-2025-54902 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54903 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54904 | Microsoft Excel Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Excel | - | - |
| CVE-2025-54905 | Microsoft Word Information Disclosure Vulnerability | Important | 7.1 |
Microsoft Office Word | - | - |
| CVE-2025-54906 | Microsoft Office Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office | - | - |
| CVE-2025-54907 | Microsoft Office Visio Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office Visio | - | - |
| CVE-2025-54908 | Microsoft PowerPoint Remote Code Execution Vulnerability | Important | 7.8 |
Microsoft Office PowerPoint | - | - |
| CVE-2025-54911 | Windows BitLocker Elevation of Privilege Vulnerability | Important | 7.3 |
Windows BitLocker | - | - |
| CVE-2025-54912 | Windows BitLocker Elevation of Privilege Vulnerability | Important | 7.8 |
Windows BitLocker | - | - |
| CVE-2025-54913 | Windows UI XAML Maps MapControlSettings Elevation of Privilege Vulnerability | Important | 7.8 |
Windows UI XAML Maps MapControlSettings | - | - |
| CVE-2025-54915 | Windows Defender Firewall Service Elevation of Privilege Vulnerability | Important | 6.7 |
Windows Defender Firewall Service | - | - |
| CVE-2025-54916 | Windows NTFS Remote Code Execution Vulnerability | Important | 7.8 |
Windows NTFS | - | - |
| CVE-2025-54917 | MapUrlToZone Security Feature Bypass Vulnerability | Important | 4.3 |
Windows MapUrlToZone | - | - |
| CVE-2025-54919 | Windows Graphics Component Remote Code Execution Vulnerability | Important | 7.5 |
Windows Win32K - GRFX | - | - |
| CVE-2025-55223 | DirectX Graphics Kernel Elevation of Privilege Vulnerability | Important | 7 |
Graphics Kernel | - | - |
| CVE-2025-55225 | Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability | Important | 6.5 |
Windows Routing and Remote Access Service (RRAS) | - | - |
| CVE-2025-55227 | Microsoft SQL Server Elevation of Privilege Vulnerability | Important | 8.8 |
SQL Server | - | - |
| CVE-2025-55232 | Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability | Important | 9.8 |
Microsoft High Performance Compute Pack (HPC) | - | - |
| CVE-2025-55234 | Windows SMB Elevation of Privilege Vulnerability | Important | 8.8 |
Windows SMB | - | Yes |
| CVE-2025-55243 | Microsoft OfficePlus Spoofing Vulnerability | Important | 7.5 |
Microsoft Office | - | - |
| CVE-2025-55245 | Xbox Gaming Services Elevation of Privilege Vulnerability | Important | 7.8 |
XBox Gaming Services | - | - |
| CVE-2025-55316 | Azure Connected Machine Agent Elevation of Privilege Vulnerability | Important | 7.8 |
Azure Connected Machine Agent | - | - |
| CVE-2025-55317 | Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability | Important | 7.8 |
Microsoft AutoUpdate (MAU) | - | - |
| CVE-2025-53791 | Microsoft Edge (Chromium-based) Security Feature Bypass Vulnerability | Moderate | 4.7 |
Microsoft Edge (Chromium-based) | - | - |
Threat Categories 6
| Threat Category | CVEs | Critical |
|---|---|---|
| Elevation of Privilege | 41 | 5 |
| Remote Code Execution | 22 | 5 |
| Information Disclosure | 16 | 3 |
| Denial of Service | 3 | - |
| Security Feature Bypass | 3 | - |
| Spoofing | 1 | - |
Affected Products 48
| Product | CVEs | Exploited |
|---|---|---|
| Windows Routing and Remote Access Service (RRAS) | 10 | - |
| Microsoft Office Excel | 8 | - |
| Windows Defender Firewall Service | 6 | - |
| Role: Windows Hyper-V | 4 | - |
| Microsoft Office | 3 | - |
| Windows Win32K - GRFX | 3 | - |
| Graphics Kernel | 3 | - |
| Windows Kernel | 3 | - |
| Microsoft Graphics Component | 2 | - |
| SQL Server | 2 | - |
| Windows Local Security Authority Subsystem Service (LSASS) | 2 | - |
| Windows Connected Devices Platform Service | 2 | - |
| Windows MapUrlToZone | 2 | - |
| Windows BitLocker | 2 | - |
| Windows Imaging Component | 1 | - |
| Azure - Networking | 1 | - |
| Windows NTLM | 1 | - |
| Dynamics 365 FastTrack Implementation Assets | 1 | - |
| Azure Entra | 1 | - |
| Xbox | 1 | - |
| Azure Bot Service | 1 | - |
| Azure Windows Virtual Machine Agent | 1 | - |
| Windows PowerShell | 1 | - |
| Windows DWM | 1 | - |
| Windows Bluetooth Service | 1 | - |
| Windows Internet Information Services | 1 | - |
| Windows TCP/IP | 1 | - |
| Windows Ancillary Function Driver for WinSock | 1 | - |
| Windows SMBv3 Client | 1 | - |
| Windows Management Services | 1 | - |
| Microsoft Brokering File System | 1 | - |
| Capability Access Management Service (camsvc) | 1 | - |
| Windows UI XAML Phone DatePickerFlyout | 1 | - |
| Microsoft Virtual Hard Drive | 1 | - |
| Windows MultiPoint Services | 1 | - |
| Windows SPNEGO Extended Negotiation | 1 | - |
| Microsoft Office SharePoint | 1 | - |
| Microsoft Office Word | 1 | - |
| Microsoft Office Visio | 1 | - |
| Microsoft Office PowerPoint | 1 | - |
| Windows UI XAML Maps MapControlSettings | 1 | - |
| Windows NTFS | 1 | - |
| Microsoft High Performance Compute Pack (HPC) | 1 | - |
| Windows SMB | 1 | - |
| XBox Gaming Services | 1 | - |
| Azure Connected Machine Agent | 1 | - |
| Microsoft AutoUpdate (MAU) | 1 | - |
| Microsoft Edge (Chromium-based) | 1 | - |