February Microsoft Patch Tuesday. 89 CVEs, 33 added since January. Two with signs of exploitation in the wild:
EoP – Windows Ancillary Function Driver for WinSock (CVE-2025-21418) EoP – Windows Storage (CVE-2025-21391)
There are no vulnerabilities with public exploits, but there are 7 with private ones:
RCE – Microsoft Edge (CVE-2025-21279, CVE-2025-21283) Auth. Bypass – Azure (CVE-2025-21415) EoP – Windows Setup Files Cleanup (CVE-2025-21419) Spoofing – Windows NTLM (CVE-2025-21377) Spoofing – Microsoft Edge (CVE-2025-21267, CVE-2025-21253)
Among the rest, the following can be highlighted:
RCE – Windows LDAP (CVE-2025-21376), Microsoft Excel (CVE-2025-21381, CVE-2025-21387), Microsoft SharePoint Server (CVE-2025-21400), DHCP Client Service (CVE-2025-21379) EoP – Windows Core Messaging (CVE-2025-21184, CVE-2025-21358, CVE-2025-21414), Windows Installer (CVE-2025-21373)
Hi! My name is Alexander and I am a Vulnerability Management specialist. You can read more about me here. Currently, the best way to follow me is my Telegram channel @avleonovcom. I update it more often than this site. If you haven’t used Telegram yet, give it a try. It’s great. You can discuss my posts or ask questions at @avleonovchat.
А всех русскоязычных я приглашаю в ещё один телеграмм канал @avleonovrus, первым делом теперь пишу туда.