October Microsoft Patch Tuesday. A total of 213 vulnerabilities - twice as many as in September. Of these, 41 vulnerabilities were added between the September and October MSPT. There are four vulnerabilities with evidence of exploitation in the wild:
🔻 SFB - IGEL OS (CVE-2025-47827) - public exploit available
🔻 EoP - Windows Agere Modem Driver (CVE-2025-24990)
🔻 EoP - Windows Remote Access Connection Manager (CVE-2025-59230)
🔻 MemCor - Chromium (CVE-2025-10585)
Another vulnerability with a public PoC exploit:
🔸 RCE - Unity Runtime (CVE-2025-59489)
Among the remaining vulnerabilities with no public exploits or signs of exploitation in the wild, the following stand out:
🔹 RCE - WSUS (CVE-2025-59287), Microsoft Office (CVE-2025-59227, CVE-2025-59234)
🔹 EoP - Windows Agere Modem Driver (CVE-2025-24052), Windows Cloud Files Mini Filter Driver (CVE-2025-55680)
Hi! My name is Alexander and I am a Vulnerability Management specialist. You can read more about me here. Currently, the best way to follow me is my Telegram channel @avleonovcom. You can discuss my posts or ask questions at @avleonovchat.
А всех русскоязычных я приглашаю подписаться на мой канал @avleonovrus "Управление Уязвимостями и прочее" в MAX или в Telegram.
Pingback: November Microsoft Patch Tuesday | Alexander V. Leonov
Pingback: About Remote Code Execution – Windows Server Update Services (WSUS) (CVE-2025-59287) vulnerability | Alexander V. Leonov