Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Microsoft October 2025 Patch Tuesday (183 fixes)

Security Patch Release
First reported
Last updated
Happening score
H score 59
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft released 183 security fixes across its products, including three vulnerabilities under active exploitation, creating a high-priority patch cycle for Windows and other Microsoft software. The release also coincided with the end of standard Windows 10 support unless devices are enrolled in ESU. CISA later added the exploited issues to its KEV catalog, reinforcing the urgency for affected systems.

Related Happenings

CISA orders federal patching of Oracle WebLogic CVE-2024-21182

Public Sector Action
First: 02.06.2026 15:40 Last: 02.06.2026 15:40 Sources 1

About this happening: CISA ordered **federal agencies** to patch **Oracle WebLogic Server** against **CVE-2024-21182** by **June 4**, creating an immediate remediation deadline for affected government...

Open Happening

Microsoft CVD response for Windows Defender and BitLocker

Advisory/Mitigation
First: 28.05.2026 16:53 Last: 28.05.2026 16:53 Sources 1

About this happening: **Microsoft** is urging **Coordinated Vulnerability Disclosure (CVD)** and says it is developing **security updates** for **Windows components including Defender and BitLocker** a...

Open Happening

Microsoft security patch release for CVE-2026-45659

Security Patch Release
First: 26.05.2026 14:49 Last: 26.05.2026 14:49 Sources 1

About this happening: Microsoft released **SharePoint** updates for **CVE-2026-45659**, a **remote code execution** flaw that could let an authenticated attacker run code over the network without eleva...

Open Happening

CERT-In 12-hour KEV remediation guidance

Advisory/Mitigation
First: 26.05.2026 13:30 Last: 26.05.2026 13:30 Sources 1

About this happening: CERT-In set a **12-hour** expectation for containing or remediating **known exploited vulnerabilities** on **internet-facing and crown-jewel systems**, sharply shortening response...

Open Happening

CERT-In issues 12-hour patch guidance for Indian organizations

Public Sector Action
First: 26.05.2026 13:30 Last: 26.05.2026 13:30 Sources 1

About this happening: **CERT-In** published new guidance on **May 25** urging Indian organizations to patch **actively exploited internet-facing vulnerabilities** within **12 hours**, tightening respon...

Open Happening

Timeline

  1. 15.10.2025 12:23 2 articles · 7mo ago

    Microsoft releases 183 fixes and ends standard Windows 10 support

    Initial Disclosure

    Microsoft released fixes for 183 security flaws across its products, including CVE-2025-24990, CVE-2025-59230, and CVE-2025-47827, which were already under active exploitation. The update also included 25 Chromium-based Edge fixes, and standard Windows 10 support ended unless devices are enrolled in the Extended Security Updates (ESU) program. The exploited issues were added to CISA's Known Exploited Vulnerabilities (KEV) catalog, with federal agencies required to apply the patches by November 4, 2025.

    Show sources
    Open in new tab