Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Microsoft October 2025 Patch Tuesday update (175 CVEs)

Security Patch Release
First reported
Last updated
Happening score
H score 59
2 unique sources, 2 articles

Summary

Hide ▲

Microsoft's October Patch Tuesday release closed 175 CVEs, including two actively exploited zero-days and multiple flaws the company expects attackers to target. The update affects a wide range of Microsoft products, so exposed and unmanaged systems face immediate risk if the fixes are delayed. It is the largest Microsoft Patch Tuesday in recent memory and arrives as Windows 10 reaches end of life for regular security patches.

Related Happenings

Microsoft security patch release for CVE-2026-41091 and CVE-2026-45498

Security Patch Release
First: 21.05.2026 10:49 Last: 21.05.2026 10:49 Sources 1

About this happening: Microsoft rolled out security updates for Defender and related malware protection components to address two zero-days: CVE-2026-41091 and CVE-2026-45498. The fixes cover affected...

Latest development: 21.05.2026 12:52

Microsoft released patches for Microsoft Defender Antimalware Platform version 4.18.26040.7 to address CVE-2026-41091, a link-following privilege-escalation flaw that can let an authorized attacker elevate privileges locally to System, and CVE-2026-45498, a denial-of-service flaw. Microsoft said both vulnerabilities were publicly disclosed and exploited in the wild as zero-days. CISA added both flaws to its Known Exploited Vulnerabilities (KEV) list and urged federal agencies to patch them by June 3.

Open Happening

Windows BitLocker YellowKey mitigation guidance (CVE-2026-45585)

Advisory/Mitigation
First: 20.05.2026 10:31 Last: 20.05.2026 10:31 Sources 1

About this happening: Microsoft issued **mitigation guidance** for **YellowKey**, a **Windows BitLocker zero-day** that can expose **BitLocker-protected drives** before the security update is available...

Open Happening

Rising critical Microsoft vulnerabilities across Windows, Azure, Dynamics 365, and Office

Target Trend
First: 19.05.2026 17:00 Last: 19.05.2026 17:00 Sources 1

About this happening: Microsoft’s vulnerability volume stayed broadly stable, but **critical flaws** doubled year over year across **Windows, Azure, Dynamics 365, and Office**, increasing the likelihoo...

Open Happening

Microsoft May 2026 Patch Tuesday release

Security Patch Release
First: 13.05.2026 13:36 Last: 13.05.2026 13:36 Sources 1

About this happening: Microsoft's **May 13, 2026 Patch Tuesday** release fixed **138 vulnerabilities** across its product portfolio, including **Windows**, **Azure**, and **Edge**. None of the flaws we...

Open Happening

Microsoft security patch release for CVE-2026-41089

Security Patch Release
First: 13.05.2026 00:46 Last: 13.05.2026 00:46 Sources 1

About this happening: **Microsoft** and other major software vendors shipped a heavy **May 2026** patch cycle, with fixes spanning **Windows**, **iOS**, **Firefox**, **Oracle** products, and **Chrome**...

Open Happening

Timeline

  1. 15.10.2025 00:53 3 articles · 7mo ago

    Microsoft October 2025 Patch Tuesday release

    Initial Disclosure

    Microsoft's October 2025 Patch Tuesday security update delivered 175 CVEs across Windows and other products, including CVE-2025-59230 and CVE-2025-24990, two zero-days already being actively exploited, plus three previously disclosed issues and more than a dozen flaws Microsoft considers likely exploitation targets.

    Show sources
    Open in new tab
  2. 15.10.2025 00:53 1 articles · 7mo ago

    Active exploitation of Windows and IGEL OS zero-days

    Exploitation Observed

    Attackers were already exploiting CVE-2025-59230 in Windows Remote Access Connection Manager and CVE-2025-24990 in the Windows Agere modem driver, while CVE-2025-47827 in IGEL OS had a public proof of concept since May and was also described as actively exploitable.

    Show sources
    Open in new tab
  3. 15.10.2025 00:53 1 articles · 7mo ago

    Microsoft removes the Agere modem driver

    Mitigation Patch Update

    Microsoft removed the Windows Agere modem driver ltmdm64.sys through the October cumulative update to block the exploitation path tied to the modem-service flaws, and Microsoft advised removing existing dependencies on that hardware because Agere modems using the driver would no longer work on Windows.

    Show sources
    Open in new tab
  4. 15.10.2025 00:53 1 articles · 7mo ago

    Windows 10 reaches end of regular patching

    Legal Policy Action Update

    The October Patch Tuesday cycle marked Windows 10 end of life for regular security patches, meaning Microsoft will no longer issue routine Patch Tuesday fixes for the operating system even though it still holds a large share of the desktop Windows market.

    Show sources
    Open in new tab