The Microsoft April 2025 security updates have been released and consist of 124 new CVEs to Microsoft products. The additional third-party CVEs bring the combined total to 134 CVEs and 9 non-Microsoft CVEs.
Of the Microsoft CVEs released, 11 are rated critical, 2 low and the rest are rated important in security. At the time of release, one is listed as being publicly known and under active attack.
The security updates apply to the following products, features and roles: Windows and Windows Components, Office and Office Components, Azure, .NET and Visual Studio, BitLocker, Kerberos, Windows Hello, OpenSSH, and Windows Lightweight Directory Access Protocol (LDAP).
See the list of KBs at the bottom of the page at April 2025 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates.
Recommended Reading: See Dustin Childs review and analysis in Zero Day Initiative -- The April 2025 Security Update Review.
Of the Microsoft CVEs released, 11 are rated critical, 2 low and the rest are rated important in security. At the time of release, one is listed as being publicly known and under active attack.
The security updates apply to the following products, features and roles: Windows and Windows Components, Office and Office Components, Azure, .NET and Visual Studio, BitLocker, Kerberos, Windows Hello, OpenSSH, and Windows Lightweight Directory Access Protocol (LDAP).
See the list of KBs at the bottom of the page at April 2025 Security Updates - Release Notes - Security Update Guide - Microsoft for information regarding known issues with the security updates.
Recommended Reading: See Dustin Childs review and analysis in Zero Day Initiative -- The April 2025 Security Update Review.