Search

Microsoft Fixes 67 Security Flaws With June 2025 Security Update, Including Two Zero-Day Vulnerabilities

Microsoft has fixed a zero-day remote code execution vulnerability that was actively exploited.

Advertisement
Highlights
  • Microsoft has fixed two zero-day security flaws affecting its products
  • One of the flaws was activelty exploited, according to the company
  • Microsoft fixed a second zero-day impacting the Windows SMB client
Microsoft Fixes 67 Security Flaws With June 2025 Security Update, Including Two Zero-Day Vulnerabilities

One of the security flaws patched by Microsoft was actively exploited before it was discovered

Photo Credit: Microsoft

Microsoft has rolled out fixes for several security flaws as part of the June 2025 Patch Tuesday release, including 11 vulnerabilities with a "critical" rating, and 56 others rated as "important". Two of the flaws patched by Microsoft are categorised as zero-day flaws, one of which was actively exploited before the company rolled out a fix. The Redmond company previously fixed multiple security flaws affecting Microsoft Edge, including a zero-day exploit that also affects the Google Chrome browser.

Microsoft Patches Previously Exploited WebDAV Zero-Day Flaw

According to Microsoft's release notes, the June 2025 security updates contain fixes for 67 security flaws impacting various products and services. The firm has fixed 14 flaws that could have led to an escalation of privilege, 26 remote code execution vulnerabilities, and 17 other issues that could have led to information disclosure.

The most notable security flaw detected by Microsoft is the CVE-2025-33053, which impacts an HTTP extension called Web Distributed Authoring and Versioning (WebDAV). Microsoft says that this zero-day security flaw has a CVSS score of 8.8, and that it has been actively exploited, by tricking users into clicking on a malicious URL.

This flaw was detected by Check Point researchers David Driker and Alexandra Gofman, and the cybersecurity firm says a known threat actor known as FruityArmor or Stealth Falcon was using the CVE-2025-33053 vulnerability. The security flaw allowed the hackers to remotely execute code on a target's computer, but making changes to the victim's working directory.

Microsoft has also patched another zero-day security flaw that affects the Windows SMB (Samba) client, and could allow a malicious user to gain elevated (or system) privileges on devices that are connected to the same local network. The issue was caused due to improper access control in the Windows SMB client, according to Microsoft.

Earlier this month, the company rolled out multiple security fixes for the Microsoft Edge browser, which were previously released by the Chromium project. One of these flaws, identified as CVE-2025-5419, is a zero-day security flaw that was exploited before it was patched by Google. Users who are running on the latest stable release (version 137.0.3296.62) should be protected against these security flaws.

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

 
Show Full Article
Please wait...
Advertisement

Related Stories

Popular Mobile Brands
  1. Oppo Reno 14 5G Series Launching Today: All You Need to Know
  2. Amazon Prime Day 2025 Sale: Discounts, Bank Offers Teased
  3. Alienware Area-51, Aurora Desktops Refreshed in India: Price, Features
  4. Vivo X200 FE Tipped to Launch in India on This Date
  5. Vivo T4 Lite 5G Now Available for Purchase in India: Price, Offers
  6. Lumio Arc 5, Arc 7 Projectors to Launch in India on July 7
  7. Red Magic Astra Gaming Tablet Launched With Snapdragon 8 Elite SoC
  8. Maa OTT Release Date Reportedly Revealed: When and Where to Watch it Online?
  9. Honor X9c 5G India Launch Date, Key Specifications and Colours Revealed
  10. Honor Magic V5 Launched: Just 4.1mm Thin, Packs a 6,100mAh Battery
  1. Oppo Reno 14 5G Series Launching Today: Know Price, Expected Features and Specifications
  2. Virginia Tech Engineers Craft Durable, Self‑Repairing, and Recyclable PCBs
  3. Newly Detected Seaborgium-257 Offers Critical Data on Fission and Quantum Shell Effects
  4. NASA CODEX Telescope on ISS Reveals Hidden Secrets of the Sun’s Corona
  5. Rocket Lab Sets Record with 'Symphony in the Stars' Launch for Confidential Client
  6. FireSat Protoflight Satellite to Scan Earth Every 20 Minutes for Early Wildfire Detection
  7. Blue Origin Sends 750th Human to Space in Landmark Suborbital Flight from Texas
  8. My Oxford Year OTT Release Date: When and Where to Watch it American Romance Drama Online?
  9. Moonwalk OTT Release Date: When and Where to Watch Malayalam Musical Drama Online?
  10. Maa OTT Release Date Reportedly Revealed: When and Where to Watch Kajol Starrer Movie Online After Theatrical Run?
Gadgets 360 is available in
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2025. All rights reserved.
Trending Products »
Latest Tech News »