Find notable cyber news and cases, enriched with sources, timelines, and signals.

Microsoft security patch release for CVE-2025-62215

Security Patch Release
First reported
Last updated
Happening score
H score 56
2 unique sources, 2 articles

Summary

Hide ▲

Microsoft released its November 2025 Patch Tuesday updates, fixing 63 flaws and one actively exploited zero-day in the Windows Kernel. The bundle includes four Critical vulnerabilities, including two remote code execution bugs, and covers CVE-2025-62215. Microsoft also says this is the first Windows 10 ESU release, and users on the unsupported OS are urged to move to Windows 11 or enroll in the ESU program.

Related Happenings

Microsoft Defender BlueHammer (CVE-2026-33825) ransomware exploitation wave

Exploitation Wave
H score41 First: 30.06.2026 11:53 Last: 30.06.2026 11:53 Sources 1

About this happening: CISA has flagged **BlueHammer (CVE-2026-33825)** as exploited in **ransomware campaigns**, expanding the risk to **Windows devices** exposed to privilege escalation. The flaw in *...

Microsoft releases RoguePlanet Defender security update for CVE-2026-50656

Security Patch Release
H score32 First: 17.06.2026 20:36 Last: 17.06.2026 20:36 Sources 1

About this happening: **Microsoft** has released a **security update** for **CVE-2026-50656**, remediating **RoguePlanet** in the **Microsoft Malware Protection Engine (mpengine.dll)**. The flaw is a *...

Latest development: 09.07.2026 11:48

Microsoft released security updates for CVE-2026-50656, remediating the RoguePlanet privilege-escalation flaw in Microsoft Malware Protection Engine (mpengine.dll) with version 1.1.26060.3008 and additional defense-in-depth updates. Microsoft said no customer action is required to install the update.

ESET analysis of SprySOCKS Windows variants adds IOC-backed detection guidance

Technical Analysis
H score34 First: 16.06.2026 12:00 Last: 16.06.2026 12:00 Sources 1

About this happening: **ESET** identified previously undocumented **Windows variants** of **SprySOCKS**, a backdoor attributed to **FishMonger** and linked to **I-Soon**. The **WIN_DRV** and **WIN_PLUS...

Microsoft security patch release for CVE-2026-42824

Security Patch Release
H score30 First: 15.06.2026 16:00 Last: 15.06.2026 16:00 Sources 1

About this happening: Microsoft's **fix for SearchLeak** in **Microsoft 365 Copilot Enterprise** closed a **critical** flaw tied to **CVE-2026-42824** that could expose **mailbox, OneDrive, and SharePo...

Microsoft Windows June 2026 Patch Tuesday zero-day fixes (multiple vulnerabilities)

Security Patch Release
H score40 First: 10.06.2026 12:57 Last: 10.06.2026 12:57 Sources 1

About this happening: **Microsoft**'s **June 2026 Patch Tuesday** fixed **three Windows zero-days** that could yield **SYSTEM** access or bypass **BitLocker** on vulnerable systems.

Timeline

  1. 11.11.2025 20:45 2 articles · 8mo ago

    Microsoft November 2025 Patch Tuesday fixes CVE-2025-62215

    Initial Disclosure

    Microsoft released the November 2025 Patch Tuesday updates for Windows, covering 63 flaws and one actively exploited zero-day in Windows Kernel, CVE-2025-62215, a local elevation-of-privilege race condition that Microsoft says was used to gain SYSTEM privileges on Windows devices. The update set also includes four Critical vulnerabilities and marks the first Windows 10 ESU release, with users advised to upgrade to Windows 11 or enroll in the ESU program.

    Show sources