Microsoft Patches 63 Vulnerabilities in November, Including Exploited Zero-Day

Microsoft's November 2025 updates fix 63 flaws, with a critical zero-day in Windows Kernel already exploited. Patch now!

By Content Team

Nov 12, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

Microsoft released its November 2025 Patch Tuesday updates on November 11, fixing 63 security flaws across Windows, Office, Azure, and Visual Studio. The most urgent concern is CVE-2025-62215, a zero-day Windows Kernel vulnerability already being exploited by attackers to escalate privileges on compromised systems.

Five critical vulnerabilities lead the pack, including CVE-2025-62199 in Microsoft Office that allows remote code execution through malicious documents, and CVE-2025-60724 in GDI+ enabling network-based attacks on graphics applications.

The remaining 57 "Important" rated flaws primarily target privilege escalation, affecting everything from Smart Card services to Kerberos authentication. Security teams should prioritize patching internet-facing systems immediately, as no workarounds exist for the exploited zero-day.

Source: Cyber Security News

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Google Patches Two Actively Exploited Chrome Zero-Days

Mar 13, 2026

Conduent Data Breach Exposes Nearly 17,000 Volvo Group Employees' Personal Information

Feb 15, 2026

Kaiser Permanente Settles Privacy Breach for $46 Million - Here's How to Claim Your Share

Feb 4, 2026

Healthcare Recruitment Platform Hit by Major Cyber Attack Affecting Northern Ireland Health Trusts

Apr 11, 2026