{"id":120834,"date":"2025-08-12T17:32:12","date_gmt":"2025-08-12T17:32:12","guid":{"rendered":"https:\/\/cybersecuritynews.com\/?p=120834"},"modified":"2025-08-12T17:59:14","modified_gmt":"2025-08-12T17:59:14","slug":"microsoft-patch-tuesday-august","status":"publish","type":"post","link":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/","title":{"rendered":"Microsoft Patch Tuesday\u00a0August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE"},"content":{"rendered":"\n

Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.<\/p>\n\n\n\n

The update includes fixes for 90 vulnerabilities, classified as follows: 13 are Critical, 76 are Important, one is Moderate, and one is Low. Notably, none of these vulnerabilities are listed as actively exploited zero-days, which provides some relief for IT administrators.<\/p>\n\n\n\n

The vulnerabilities fall into multiple categories, including Remote Code Execution (RCE), Elevation of Privilege (EoP), Information Disclosure, Spoofing, Denial of Service (DoS), and Tampering. Below is a detailed breakdown of the vulnerabilities by category, along with key insights for organizations to prioritize their patching efforts.<\/p>\n\n\n\n

Severity \/ Impact<\/th>Remote Code Execution (RCE)<\/th>Elevation of Privilege (EoP)<\/th>Information Disclosure<\/th>Spoofing<\/th>Denial of Service (DoS)<\/th>Tampering<\/th>Total<\/strong><\/th><\/tr><\/thead>
Critical<\/strong><\/td>9<\/td>1<\/td>2<\/td>1<\/td>0<\/td>0<\/td>13<\/strong><\/td><\/tr>
Important<\/strong><\/td>26<\/td>38<\/td>14<\/td>7<\/td>5<\/td>1<\/td>91<\/strong><\/td><\/tr>
Moderate<\/strong><\/td>0<\/td>1<\/td>0<\/td>1<\/td>0<\/td>0<\/td>2<\/strong><\/td><\/tr>
Low<\/strong><\/td>0<\/td>0<\/td>0<\/td>1<\/td>0<\/td>0<\/td>1<\/strong><\/td><\/tr>
Total<\/strong><\/td>35<\/strong><\/td>40<\/strong><\/td>16<\/strong><\/td>10<\/strong><\/td>5<\/strong><\/td>1<\/strong><\/td>107<\/strong><\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n

On August 12, 2025, Microsoft released <\/a>its monthly Patch Tuesday security updates, addressing a significant number of vulnerabilities across its product ecosystem.<\/p>\n\n\n\n

Remote Code Execution (RCE) Vulnerabilities: 36 Total<\/strong><\/h2>\n\n\n\n

Remote Code Execution vulnerabilities dominate this month’s Patch Tuesday, with 36 vulnerabilities<\/strong> patched, 10 of which are rated Critical<\/strong>. These flaws could allow attackers to execute arbitrary code, potentially compromising entire systems. Key RCE vulnerabilities include:<\/p>\n\n\n\n

Windows Graphics Component (CVE-2025-50165<\/a>, Critical)<\/strong>: An untrusted pointer dereference in the Microsoft Graphics Component allows unauthorized attackers to execute code over a network.<\/p>\n\n\n\n

DirectX Graphics Kernel (CVE-2025-50176<\/a>, Critical)<\/strong>: A type confusion flaw in the Graphics Kernel enables local code execution by an authorized attacker.<\/p>\n\n\n\n

Microsoft Office (CVE-2025-53731<\/a>, CVE-2025-53740<\/a>, Critical)<\/strong>: Multiple use-after-free vulnerabilities in Microsoft Office allow unauthorized attackers to execute code locally.<\/p>\n\n\n\n

Microsoft Word (CVE-2025-53733<\/a>, CVE-2025-53784<\/a>, Critical)<\/strong>: Flaws in Microsoft Word, including incorrect numeric type conversion and use-after-free issues, permit local code execution.<\/p>\n\n\n\n

GDI+ (CVE-2025-53766<\/a>, Critical)<\/strong>: A heap-based buffer overflow in Windows GDI+ allows network-based code execution.<\/p>\n\n\n\n

Windows Hyper-V (CVE-2025-48807, Critical)<\/strong>: An improper restriction of communication channels in Hyper-V enables local code execution.<\/p>\n\n\n\n

Microsoft Message Queuing (MSMQ) (CVE-2025-50177, Critical; CVE-2025-53143, CVE-2025-53144, CVE-2025-53145, Important)<\/strong>: Multiple vulnerabilities, including use-after-free and type confusion flaws, affect MSMQ, allowing network-based code execution.<\/p>\n\n\n\n

Microsoft Excel (CVE-2025-53741, CVE-2025-53759, CVE-2025-53737, CVE-2025-53739, Important)<\/strong>: Heap-based buffer overflows and use-after-free issues in Excel enable local code execution.<\/p>\n\n\n\n

Windows Routing and Remote Access Service (RRAS) (CVE-2025-49757, CVE-2025-50160, CVE-2025-50162, CVE-2025-50163, CVE-2025-50164, CVE-2025-53720, Important)<\/strong>: Heap-based buffer overflows in RRAS allow network-based code execution.<\/p>\n\n\n\n

Microsoft Patch Tuesday August 2025 – Vulnerabilities list<\/strong><\/h2>\n\n\n\n
CVE<\/th>Vulnerability Details<\/th>Actively Exploit<\/th>Type<\/th>Severity<\/th><\/tr><\/thead>
CVE-2025-53781<\/a><\/td>Azure Virtual Machines Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Critical<\/td><\/tr>
CVE-2025-50165<\/a><\/td>Windows Graphics Component Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-50176<\/a><\/td>DirectX Graphics Kernel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-50177<\/a><\/td>Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53731<\/a><\/td>Microsoft Office Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53733<\/a><\/td>Microsoft Word Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53740<\/a><\/td>Microsoft Office Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53766<\/a><\/td>GDI+ Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53778<\/a><\/td>Windows NTLM Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53784<\/a><\/td>Microsoft Word Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53793<\/a><\/td>Azure Stack Hub Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-48807<\/a><\/td>Windows Hyper-V Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-49707<\/a><\/td>Azure Virtual Machines Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Critical<\/strong><\/td><\/tr>
CVE-2025-53786<\/a><\/td>Microsoft Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-49751<\/a><\/td>Windows Hyper-V Denial of Service Vulnerability<\/td>No<\/td>Denial of Service<\/td>Important<\/td><\/tr>
CVE-2025-49745<\/a><\/td>Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-49758<\/a><\/td>Microsoft SQL Server Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53727<\/a><\/td>Microsoft SQL Server Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53729<\/a><\/td>Microsoft Azure File Sync Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-33051<\/a><\/td>Microsoft Exchange Server Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53730<\/a><\/td>Microsoft Office Visio Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53741<\/a><\/td>Microsoft Excel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53759<\/a><\/td>Microsoft Excel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53760<\/a><\/td>Microsoft SharePoint Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53761<\/a><\/td>Microsoft PowerPoint Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-24999<\/a><\/td>Microsoft SQL Server Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53772<\/a><\/td>Web Deploy Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53773<\/a><\/td>GitHub Copilot and Visual Studio Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-25005<\/a><\/td>Microsoft Exchange Server Tampering Vulnerability<\/td>No<\/td>Tampering<\/td>Important<\/td><\/tr>
CVE-2025-25006<\/a><\/td>Microsoft Exchange Server Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-25007<\/a><\/td>Microsoft Exchange Server Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-49743<\/a><\/td>Windows Graphics Component Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-49757<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-49759<\/a><\/td>Microsoft SQL Server Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-49761<\/a><\/td>Windows Kernel Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-49762<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50153<\/a><\/td>Desktop Windows Manager Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50154<\/a><\/td>Microsoft Windows File Explorer Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-50156<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-50158<\/a><\/td>Windows NTFS Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-50159<\/a><\/td>Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50160<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-50161<\/a><\/td>Win32k Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50162<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-50163<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-50164<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-50166<\/a><\/td>Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-50167<\/a><\/td>Windows Hyper-V Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50168<\/a><\/td>Win32k Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50169<\/a><\/td>Windows SMB Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-50170<\/a><\/td>Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-50171<\/a><\/td>Remote Desktop Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-50172<\/a><\/td>DirectX Graphics Kernel Denial of Service Vulnerability<\/td>No<\/td>Denial of Service<\/td>Important<\/td><\/tr>
CVE-2025-50173<\/a><\/td>Windows Installer Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53131<\/a><\/td>Windows Media Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53132<\/a><\/td>Win32k Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53133<\/a><\/td>Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53134<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53135<\/a><\/td>DirectX Graphics Kernel Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53136<\/a><\/td>NT OS Kernel Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53137<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53138<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53140<\/a><\/td>Windows Kernel Transaction Manager Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53141<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53142<\/a><\/td>Microsoft Brokering File System Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53143<\/a><\/td>Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53144<\/a><\/td>Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53145<\/a><\/td>Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53147<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53148<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53149<\/a><\/td>Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53151<\/a><\/td>Windows Kernel Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53152<\/a><\/td>Desktop Windows Manager Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53153<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53154<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53155<\/a><\/td>Windows Hyper-V Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53156<\/a><\/td>Windows Storage Port Driver Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53716<\/a><\/td>Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability<\/td>No<\/td>Denial of Service<\/td>Important<\/td><\/tr>
CVE-2025-53718<\/a><\/td>Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53719<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53720<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53721<\/a><\/td>Windows Connected Devices Platform Service Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53722<\/a><\/td>Windows Remote Desktop Services Denial of Service Vulnerability<\/td>No<\/td>Denial of Service<\/td>Important<\/td><\/tr>
CVE-2025-53723<\/a><\/td>Windows Hyper-V Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53724<\/a><\/td>Windows Push Notifications Apps Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53725<\/a><\/td>Windows Push Notifications Apps Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53726<\/a><\/td>Windows Push Notifications Apps Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53728<\/a><\/td>Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-47954<\/a><\/td>Microsoft SQL Server Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53732<\/a><\/td>Microsoft Office Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53734<\/a><\/td>Microsoft Office Visio Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53735<\/a><\/td>Microsoft Excel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53736<\/a><\/td>Microsoft Word Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53737<\/a><\/td>Microsoft Excel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53738<\/a><\/td>Microsoft Word Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53739<\/a><\/td>Microsoft Excel Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53765<\/a><\/td>Azure Stack Hub Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-53769<\/a><\/td>Windows Security App Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Important<\/td><\/tr>
CVE-2025-50157<\/a><\/td>Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability<\/td>No<\/td>Information Disclosure<\/td>Important<\/td><\/tr>
CVE-2025-50155<\/a><\/td>Windows Push Notifications Apps Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53783<\/a><\/td>Microsoft Teams Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-53788<\/a><\/td>Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-53789<\/a><\/td>Windows StateRepository API Server file Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Important<\/td><\/tr>
CVE-2025-49712<\/a><\/td>Microsoft SharePoint Remote Code Execution Vulnerability<\/td>No<\/td>Remote Code Execution<\/td>Important<\/td><\/tr>
CVE-2025-49755<\/a><\/td>Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Low<\/td><\/tr>
CVE-2025-53779<\/a><\/td>Windows Kerberos Elevation of Privilege Vulnerability<\/td>No<\/td>Elevation of Privilege<\/td>Moderate<\/td><\/tr>
CVE-2025-49736<\/a><\/td>Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability<\/td>No<\/td>Spoofing<\/td>Moderate<\/td><\/tr><\/tbody><\/table><\/figure>\n","protected":false},"excerpt":{"rendered":"

Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem. The update includes fixes for 90 vulnerabilities, classified as follows: 13 are Critical, 76 are Important, one is Moderate, and one is Low. Notably, none of these vulnerabilities are listed as actively exploited zero-days, which provides some […]<\/p>\n","protected":false},"author":3,"featured_media":120847,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp","fifu_image_alt":"Microsoft Patch Tuesday\u00a0August","_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[11,2745,2750,34,43],"tags":[],"class_list":{"0":"post-120834","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-cyber-security-news","8":"category-hacker-news","9":"category-hacking-news","10":"category-microsoft","11":"category-security-updates"},"yoast_head":"\nMicrosoft Patch Tuesday\u00a0August 2025 Released - 107 Vulnerabilities Fixed, Including 35 RCE<\/title>\n<meta name=\"description\" content=\"Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Microsoft Patch Tuesday\u00a0August 2025 Released - 107 Vulnerabilities Fixed Including 36 RCE\" \/>\n<meta property=\"og:description\" content=\"Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/\" \/>\n<meta property=\"og:site_name\" content=\"Cyber Security News\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Hackingtutorialsandnews\" \/>\n<meta property=\"article:published_time\" content=\"2025-08-12T17:32:12+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-08-12T17:59:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp\" \/><meta property=\"og:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1600\" \/>\n\t<meta property=\"og:image:height\" content=\"900\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Balaji N\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/balaji_gbh\" \/>\n<meta name=\"twitter:site\" content=\"@The_Cyber_News\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Balaji N\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"9 minutes\" \/>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Microsoft Patch Tuesday\u00a0August 2025 Released - 107 Vulnerabilities Fixed, Including 35 RCE","description":"Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/","og_locale":"en_US","og_type":"article","og_title":"Microsoft Patch Tuesday\u00a0August 2025 Released - 107 Vulnerabilities Fixed Including 36 RCE","og_description":"Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.","og_url":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/","og_site_name":"Cyber Security News","article_publisher":"https:\/\/www.facebook.com\/Hackingtutorialsandnews","article_published_time":"2025-08-12T17:32:12+00:00","article_modified_time":"2025-08-12T17:59:14+00:00","og_image":[{"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp","type":"","width":"","height":""},{"width":1600,"height":900,"url":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp","type":"image\/jpeg"}],"author":"Balaji N","twitter_card":"summary_large_image","twitter_image":"https:\/\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp","twitter_creator":"@https:\/\/twitter.com\/balaji_gbh","twitter_site":"@The_Cyber_News","twitter_misc":{"Written by":"Balaji N","Est. reading time":"9 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#article","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/"},"author":{"name":"Balaji N","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/0ad7770df28fe608567609e4ba1c4da2"},"headline":"Microsoft Patch Tuesday\u00a0August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE","datePublished":"2025-08-12T17:32:12+00:00","dateModified":"2025-08-12T17:59:14+00:00","mainEntityOfPage":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/"},"wordCount":1917,"publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"image":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#primaryimage"},"thumbnailUrl":"https:\/\/i3.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp?w=1600&resize=1600,900&ssl=1","articleSection":["Cyber Security News","Hacker News","Hacking News","Microsoft","Security Updates"],"inLanguage":"en-US","copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cybersecuritynews.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/","url":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/","name":"Microsoft Patch Tuesday\u00a0August 2025 Released - 107 Vulnerabilities Fixed, Including 35 RCE","isPartOf":{"@id":"https:\/\/cybersecuritynews.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#primaryimage"},"image":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#primaryimage"},"thumbnailUrl":"https:\/\/i3.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp?w=1600&resize=1600,900&ssl=1","datePublished":"2025-08-12T17:32:12+00:00","dateModified":"2025-08-12T17:59:14+00:00","description":"Microsoft released its August Patch Tuesday security updates, addressing a total of 107 vulnerabilities across its product ecosystem.","breadcrumb":{"@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#primaryimage","url":"https:\/\/i3.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp?w=1600&resize=1600,900&ssl=1","contentUrl":"https:\/\/i3.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp?w=1600&resize=1600,900&ssl=1","width":"1600","height":"900","caption":"Microsoft Patch Tuesday\u00a0August"},{"@type":"BreadcrumbList","@id":"https:\/\/cybersecuritynews.com\/microsoft-patch-tuesday-august\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cybersecuritynews.com\/"},{"@type":"ListItem","position":2,"name":"Microsoft Patch Tuesday\u00a0August 2025 Released – 107 Vulnerabilities Fixed Including 36 RCE"}]},{"@type":"WebSite","@id":"https:\/\/cybersecuritynews.com\/#website","url":"https:\/\/cybersecuritynews.com\/","name":"Cyber Security News","description":"World's #1 Premier Cybersecurity and Hacking News Portal","publisher":{"@id":"https:\/\/cybersecuritynews.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/cybersecuritynews.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/cybersecuritynews.com\/#organization","name":"Cyber Security News","url":"https:\/\/cybersecuritynews.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/","url":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","contentUrl":"https:\/\/cybersecuritynews.com\/wp-content\/uploads\/2021\/06\/Cyber-security.jpg","width":200,"height":200,"caption":"Cyber Security News"},"image":{"@id":"https:\/\/cybersecuritynews.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Hackingtutorialsandnews","https:\/\/x.com\/The_Cyber_News","https:\/\/www.linkedin.com\/company\/cybersecurity-news\/"]},{"@type":"Person","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/0ad7770df28fe608567609e4ba1c4da2","name":"Balaji N","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cybersecuritynews.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/8075aac45cdbf0aae6572d8039978c587715d33d6b330539092189c91804f031?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/8075aac45cdbf0aae6572d8039978c587715d33d6b330539092189c91804f031?s=96&d=mm&r=g","caption":"Balaji N"},"description":"BALAJI is an Ex-Security Researcher (Threat Research Labs) at Comodo Cybersecurity. Editor-in-Chief & Co-Founder - Cyber Security News & GBHackers On Security.","sameAs":["https:\/\/www.linkedin.com\/company\/cybersecurity-news\/","https:\/\/x.com\/https:\/\/twitter.com\/balaji_gbh"],"url":"https:\/\/cybersecuritynews.com\/author\/balaji\/"}]}},"jetpack_featured_media_url":"https:\/\/i3.wp.com\/blogger.googleusercontent.com\/img\/b\/R29vZ2xl\/AVvXsEg-bzvQ0HRJmFsRZ8P_dWqjF-coqeCubrzOlH-CYZrggmm6NxoLB2SgqwJlqIcm9gwthEanpNhSLE8AzAfPaPCkNr2zOxjKwUvAPduZLw7PC310X7F39UBy4NwVtzFohoQLWeOWF8Oo9yQZnoaWxLNmqFGZ9ku0n-Ni4tFN-0341AhZ2VCXtX1ulYBoQ8oF\/s16000\/Microsoft%20Patch%20Tuesday%C2%A0August%20.webp?w=1600&resize=1600,900&ssl=1","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/120834","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/comments?post=120834"}],"version-history":[{"count":25,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/120834\/revisions"}],"predecessor-version":[{"id":120885,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/posts\/120834\/revisions\/120885"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media\/120847"}],"wp:attachment":[{"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/media?parent=120834"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/categories?post=120834"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecuritynews.com\/wp-json\/wp\/v2\/tags?post=120834"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}