Microsoft patches six Windows zero-days.
Throughout January and February combined, Windows users had already been exhibited in a total of five so -called zero -day use, where the attackers had already hit in nature before a patch could be made available. Mars has just beaten it with a six -day Windows zero -day concern being confirmed by Microsoft in the latest Tuesday Patch security announcement. Here’s what you need to know.
Windows operating system security patches should be your main advantage this month
You can be justified to think, at least after a random glance, which this month Microsoft Patch Security Round Up is nothing very dramatic. After all, general joint calculations and exposure counting are relatively low in “JUST” 57. However, such as Tyler Reguly, Associate Director of Research and Development of Safety in the Strides, said, “Buckle up because administrators can be on a trip. With six zero -listed daytime weaknesses as detected used, and six where Microsoft has labeled the severity as critical, this is not the time to sit down and relax. The opposite, in fact. The good news, Regguly said, is that the six of the exploits discovered zero-days are resolved by monthly cumulative update. “It means a single update to go out to fix all this right away,” Reguly concluded, with any of them looking for any setup steps after the patch.
Chris Goettl, vice president of Ivanti’s security products management, meanwhile, said that in Midwest there is a saying about Mars that enters as a lion, as a lamb. “At first glance, the March of Patch on Tuesday looks like a lamb, but this lamb can have a lion’s teeth,” Goettl continued. The teeth that refer to are, of course, those days zero. “Zero Day uses affect Microsoft Management Console, NTFS, Fast Fat and Kernel Win32 subsystem,” Goettl said. As such, Goettl recommended that this updating of Windows operating system be the main update of advantage this month.
Six Windows Zero-Days in detail
CVE-2025-26633 It is a bypass of the security feature on the Microsoft Management Keyboard. “An attacker must persuade a possible target that is either a standard user or has the administrator’s privilege to open a malicious file to exploit this weakness,” said Satnam Narang, a high staff search engineer, “and social engineering is certainly one of the easiest ways to do so.”
CVE 2024-24993 It is a tampon -based tampon -based overflow within Windows NTFS. “An attacker can potentially use this issue by encouraging users to mount a specially created virtual disk,” said Henry Smith, a senior security engineer in Automox. A successful zero day attack using this weakness can result in an unauthorized striker executing an arbitrary code in the country.
CVE-2025-24991 It is a weakness of information detection in Windows NTFS that affects all Windows 10 publications from Windows 10 to 11 and server 2008 on server 2025.
CVE-2025-24985 It is a weakness within the Windows Fast Fat File System Driver, the first to be detected for three years. “Was is reported anonymously,” Narang said, “so we don’t have any specific details about him.” What we know is that it can lead to distance code execution if a user is deceived in assembling a specially created virtual disk.
CVE-2025-24983 It is an increase in the Windows Win32 kernel subsystem of the vulnerability of privilege that, if used successfully, can provide unauthorized access to sensitive data, credentials, encryption keys and system information. “CVE-2025-24983 provides a direct path from low privileges to access to the system,” said Alex Vovk, CEO and co-founder of Action1, “making it an attractive objective for attackers with initial access through phishing, malware, compromised or internal threats.”
CVE-2025-24984 It is another weakening of information detection in Windows NTFS that affects all Windows 10 publications from Windows 10 to 11 and server 2008 on server 2025. As with CVE-2015-24991, Goettl said that priority-based commands that treat this sensitivity as critical.