MS Family June 2025 Routine Security Update Advisory
Overview
Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products it has supplied. Users of affected products are advised to update to the latest version.
Affected Products
Azure Family
Nuance Digital Engagement Platform
Developer Tools Suite
.NET 8.0 installed on Linux
.NET 8.0 installed on Mac OS
.NET 8.0 installed on Windows
.NET 9.0 installed on Linux
.NET 9.0 installed on Mac OS
.NET 9.0 installed on Windows
Microsoft Visual Studio 2022 version 17.10
Microsoft Visual Studio 2022 version 17.12
Microsoft Visual Studio 2022 version 17.14
Microsoft Visual Studio 2022 version 17.8
Windows SDK
ESU Family
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Microsoft Office Suite
Microsoft 365 Apps for Enterprise for 32-bit Systems
Microsoft 365 Apps for Enterprise for 64-bit Systems
Microsoft AutoUpdate for Mac
Microsoft Excel 2016 (32-bit edition)
Microsoft Excel 2016 (64-bit edition)
Microsoft Office 2016 (32-bit edition)
Microsoft Office 2016 (64-bit edition)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Office LTSC 2021 for 32-bit editions
Microsoft Office LTSC 2021 for 64-bit editions
Microsoft Office LTSC 2024 for 32-bit editions
Microsoft Office LTSC 2024 for 64-bit editions
Microsoft Office LTSC for Mac 2021
Microsoft Office LTSC for Mac 2024
Microsoft Office for Android
Microsoft Outlook 2016 (32-bit edition)
Microsoft Outlook 2016 (64-bit edition)
Microsoft PowerPoint 2016 (32-bit edition)
Microsoft PowerPoint 2016 (64-bit edition)
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Server 2019
Microsoft SharePoint Server Subscription Edition
Microsoft Word 2016 (32-bit edition)
Microsoft Word 2016 (64-bit edition)
Office Online Server
Windows Family
Remote Desktop client for Windows Desktop
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 21H2 for 32-bit Systems
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 10 Version 22H2 for 32-bit Systems
Windows 10 Version 22H2 for ARM64-based Systems
Windows 10 Version 22H2 for x64-based Systems
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 11 Version 22H2 for ARM64-based Systems
Windows 11 Version 22H2 for x64-based Systems
Windows 11 Version 23H2 for ARM64-based Systems
Windows 11 Version 23H2 for x64-based Systems
Windows 11 Version 24H2 for ARM64-based Systems
Windows 11 Version 24H2 for x64-based Systems
Windows App Client for Windows Desktop
Windows Security App
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server 2019
Windows Server 2019 (Server Core installation)
Windows Server 2022
Windows Server 2022 (Server Core installation)
Windows Server 2022, 23H2 Edition (Server Core installation)
Windows Server 2025
Windows Server 2025 (Server Core installation)
Resolved Vulnerabilities
10 vulnerabilities rated Critical and 57 rated Important were found.
Azure Family
Critical-rated spoofing vulnerability in Nuance Digital Engagement Platform (CVE-2025-47977)
Developer Tools family
Critical remote code execution vulnerability in .NET and Visual Studio (CVE-2025-30399)
Critical remote code execution vulnerability in Visual Studio (CVE-2025-47959)
Critical elevation of privilege vulnerability in the Windows SDK (CVE-2025-47962)
Microsoft Office Suite
Critical elevation of privilege vulnerability in Microsoft AutoUpdate (MAU) (CVE-2025-47968)
Critical remote code execution vulnerability in Microsoft Office Excel (CVE-2025-47165, CVE-2025-47174)
Critical remote code execution vulnerabilities in Microsoft Office Outlook (CVE-2025-47171, CVE-2025-47176)
Critical remote code execution vulnerability in Microsoft Office PowerPoint (CVE-2025-47175)
Critical remote code execution vulnerability in Microsoft Office SharePoint (CVE-2025-47172)
Critical-grade remote code execution vulnerability in Microsoft Office SharePoint (CVE-2025-47163, CVE-2025-47166)
Critical remote code execution vulnerability in Microsoft Office Word (CVE-2025-32717)
Critical-grade remote code execution vulnerabilities in Microsoft Office Word (CVE-2025-47957, CVE-2025-47168, CVE-2025-47169, CVE-2025-47170)
Urgent-grade remote code execution vulnerabilities in Microsoft Office (CVE-2025-47162, CVE-2025-47953, CVE-2025-47164, CVE-2025-47167)
Critical-grade remote code execution vulnerability in Microsoft Office (CVE-2025-47173)
Windows Family
Critical security feature bypass vulnerability in App Control for Business (WDAC) (CVE-2025-33069)
Critical denial of service vulnerability in Microsoft Local Security Authority Server (lsasrv) (CVE-2025-33056)
Critical information disclosure vulnerability in Remote Desktop Client (CVE-2025-32715)
Critical remote code execution vulnerability in WebDAV (CVE-2025-33053)
Critical elevation of privilege vulnerability in Windows Common Log File System Driver (CVE-2025-32713)
Critical remote code execution vulnerability in Windows Cryptographic Services (CVE-2025-29828)
Critical-grade denial-of-service vulnerabilities in Windows DHCP Server (CVE-2025-32725, CVE-2025-33050)
Critical information disclosure vulnerability in Windows DWM Core Library (CVE-2025-33052)
Critical information disclosure vulnerability in Windows Hello (CVE-2025-47969)
Critical elevation of privilege vulnerabilities in Windows Installer (CVE-2025-32714, CVE-2025-33075)
Critical remote code execution vulnerability in Windows KDC Proxy Service (KPSSVC) (CVE-2025-33071)
Critical-grade privilege escalation vulnerability in the Windows Kernel (CVE-2025-33067)
Critical-grade denial-of-service vulnerability in Windows Local Security Authority (LSA) (CVE-2025-33057)
Critical denial of service vulnerability in Windows Local Security Authority Subsystem Service (LSASS) (CVE-2025-32724)
Critical elevation of privilege vulnerability in Windows Media (CVE-2025-32716)
Urgent elevation of privilege vulnerability in Windows Netlogon (CVE-2025-33070)
Critical elevation of privilege vulnerability in Windows Recovery Driver (CVE-2025-32721)
Critical elevation of privilege vulnerability in Windows Remote Access Connection Manager (CVE-2025-47955)
Critical remote code execution vulnerability in Windows Remote Desktop Services (CVE-2025-32710)
Critical remote code execution vulnerabilities in Windows Routing and Remote Access Service (RRAS) (CVE-2025-33064, CVE-2025-33066)
Critical elevation of privilege vulnerabilities in Windows SMB (CVE-2025-32718, CVE-2025-33073)
Critical security feature bypass vulnerability in Windows Secure Boot (CVE-2025-3052)
Critical spoofing vulnerability in Windows Security App (CVE-2025-47956)
Critical security feature bypass vulnerability in Windows Shell (CVE-2025-47160)
Critical Denial of Service Vulnerability in Windows Standards-Based Storage Management Service (CVE-2025-33068)
Critical information disclosure vulnerabilities in Windows Storage Management Provider (CVE-2025-32719, CVE-2025-32720, CVE-2025-33058, CVE-2025-33059, CVE-2025-33060, CVE-2025-33061, CVE-2025-33062, CVE-2025-33063, CVE-2025-33065, CVE-2025-24068, CVE-2025-24069, CVE-2025-24065, CVE-2025-33055)
Critical information disclosure vulnerability in Windows Storage Port Driver (CVE-2025-32722)
Critical elevation of privilege vulnerability in Windows Win32K – GRFX (CVE-2025-32712)
Vulnerability Patches
The following product-specific vulnerability patches were made available in the June 10, 2025 Update Please use the Windows Update feature for automatic installation or refer to the URLs in the product information below to download and install.
.NET 8.0 installed on Linux versions
.NET 8.0 installed on Mac OS versions
.NET 8.0 installed on Windows versions
https://dotnet.microsoft.com/en-us/download/dotnet/8.0
.NET 9.0 installed on Linux version
.NET 9.0 installed on Mac OS versions
.NET 9.0 installed on Windows version
https://dotnet.microsoft.com/en-us/download/dotnet/9.0
Microsoft 365 Apps for Enterprise version
https://msrc.microsoft.com/update-guide/
Microsoft AutoUpdate for Mac version
https://go.microsoft.com/fwlink/p/?linkid=830196
Microsoft Excel 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108213
Microsoft Office 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108205
https://www.microsoft.com/en-us/download/details.aspx?id=108211
Microsoft Office 2019 versions
Microsoft Office LTSC 2021 editions
Microsoft Office LTSC 2024 editions
https://msrc.microsoft.com/update-guide/
Microsoft Office LTSC for Mac 2021 version
Microsoft Office LTSC for Mac 2024 version
Microsoft Office for Android versions
https://msrc.microsoft.com/update-guide/
Microsoft Outlook 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108212
Microsoft PowerPoint 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108214
Microsoft SharePoint Enterprise Server 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108208
https://www.microsoft.com/en-us/download/details.aspx?id=108215
Microsoft SharePoint Server 2019 version
https://www.microsoft.com/en-us/download/details.aspx?id=108206
https://www.microsoft.com/en-us/download/details.aspx?id=108207
Microsoft SharePoint Server Subscription Edition version
https://www.microsoft.com/en-us/download/details.aspx?id=108210
Microsoft Visual Studio 2022 version 17.10 version
Microsoft Visual Studio 2022 version 17.12
Microsoft Visual Studio 2022 version 17.14
Microsoft Visual Studio 2022 version 17.8
https://msrc.microsoft.com/update-guide/
Microsoft Word 2016 version
https://www.microsoft.com/en-us/download/details.aspx?id=108209
Nuance Digital Engagement Platform version
https://msrc.microsoft.com/update-guide/
Office Online Server version
https://www.microsoft.com/en-us/download/details.aspx?id=108204
Remote Desktop client for Windows Desktop version
https://msrc.microsoft.com/update-guide/
Windows 10 version
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060998
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058387
Windows 10 Version 1607 Version
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058383
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061010
Windows 10 Version 1809
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058392
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060531
Windows 10 Version 21H2
Windows 10 Version 22H2
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060533
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058379
Windows 11 Version 22H2
Windows 11 Version 23H2
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060999
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058405
Windows 11 Version 24H2
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060842
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060841
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058411
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058497
Windows App Client for Windows Desktop version
Windows SDK version
https://msrc.microsoft.com/update-guide/
Windows Security App version
https://www.catalog.update.microsoft.com/Search.aspx?q=KBInformation
Windows Server 2008 R2 Service Pack 1 version
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058430
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058454
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061078
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061036
Windows Server 2008 Service Pack 2 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061198
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058429
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061026
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061072
Windows Server 2012 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058451
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061059
Windows Server 2012 R2 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058403
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061018
https://www.catalog.update.microsoft.com/Search.aspx?q=KB5060996
Windows Server 2016 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058383
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5061010
Windows Server 2019 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058392
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060531
Windows Server 2022 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060526
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060525
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058385
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058500
Windows Server 2022, 23H2 Edition version
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060118
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058384
Windows Server 2025 editions
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060842
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5060841
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058411
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5058497