This month’s Microsoft Patch Tuesday updates have brought over 50 security fixes, making it a relatively modest update package compared to January. However, the highlight of the February Patch Tuesday is the addressing of some zero-day vulnerabilities, making it crucial for Microsoft users.
Microsoft Patch Tuesday February Security Fixes
The latest Patch Tuesday focuses on fixing four zero-day vulnerabilities, with two of them being publicly disclosed but not actively exploited, while the other two were exploited without being disclosed. Here’s a brief overview of these vulnerabilities:
- CVE-2025-21418 (important; CVSS 7.8): A privilege escalation vulnerability in Windows Ancillary Function Driver for WinSock. Exploiting this flaw could grant SYSTEM privileges to the attacker. Although undisclosed before the fix, Microsoft confirmed active exploitation.
- CVE-2025-21391 (important; CVSS 7.1): Another privilege escalation vulnerability in Windows Storage that was attacked before being fixed. The flaw allowed attackers to delete data on the target device, potentially leading to system damage.
- CVE-2025-21194 (important; CVSS 7.1): A security feature bypass in Microsoft Surface that was publicly disclosed but not actively exploited due to its complexity. Exploiting this flaw required specific conditions to be met, including physical access to the target machine.
- CVE-2025-21377 (important; CVSS 6.5): A spoofing vulnerability affecting NTLM Hash Disclosure, which could disclose user credentials to attackers through malicious files.
Other Noteworthy Patches From Microsoft
Aside from the zero-day fixes, Microsoft also addressed three critical vulnerabilities this month. These include remote code execution flaws in DHCP Client Service and Windows Lightweight Directory Access Protocol (LDAP), as well as a privilege escalation vulnerability in Microsoft Dynamics 365 Sales.
The update bundle also includes patches for 49 important severity vulnerabilities and one low severity flaw. It is crucial for users to update their devices promptly to stay protected against potential threats.
Share your thoughts in the comments section below.
