Security Advisory

MS Family August 2025 Routine Security Update Advisory

  • Aug 13 2025
MS Family August 2025 Routine Security Update Advisory

Overview

 

Microsoft(https://www.microsoft.com) has released a security update that fixes vulnerabilities in products it has supplied. Users of affected products are advised to update to the latest version.

 

Affected Products

 

 

Azure Family

Azure File Sync v18

Azure File Sync v19

Azure File Sync v20

Azure File Sync v21

Azure Stack Hub

Azure Stack Hub 2406

Azure Stack Hub 2408

Azure Stack Hub 2501

DCadsv5-series Azure VM

DCasv5-series Azure VM

DCedsv5-series Azure VM

DCesv5-series – Azure VMs

DCesv6-series Azure VM

ECadsv5-series Azure VM

ECasv5-series Azure VM

ECedsv5-series Azure VM

ECesv5-series Azure VM

Ecesv6-series Azure VM

NCCadsH100v5-series Azure VMs

 

Browser suites

Microsoft Edge for Android

 

Developer Tools suite

Microsoft Visual Studio 2022 version 17.14

Web Deploy 4.0

 

Device Suite

Teams Panels

Teams Phones

Teams for D365 Guides Hololens

Teams for D365 Remote Assist HoloLens

 

ESU Family

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2012

Windows Server 2012 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 R2 (Server Core installation)

 

Microsoft Dynamics Suite

Microsoft Dynamics 365 (on-premises) version 9.1

 

Microsoft Office Suite

Microsoft 365 Apps for Enterprise for 32-bit Systems

Microsoft 365 Apps for Enterprise for 64-bit Systems

Microsoft Excel 2016 (32-bit edition)

Microsoft Excel 2016 (64-bit edition)

Microsoft Office 2016 (32-bit edition)

Microsoft Office 2016 (64-bit edition)

Microsoft Office 2019 for 32-bit editions

Microsoft Office 2019 for 64-bit editions

Microsoft Office LTSC 2021 for 32-bit editions

Microsoft Office LTSC 2021 for 64-bit editions

Microsoft Office LTSC 2024 for 32-bit editions

Microsoft Office LTSC 2024 for 64-bit editions

Microsoft Office LTSC for Mac 2021

Microsoft Office LTSC for Mac 2024

Microsoft Office for Android

Microsoft Office for Universal

Microsoft PowerPoint 2016 (32-bit edition)

Microsoft PowerPoint 2016 (64-bit edition)

Microsoft SharePoint Enterprise Server 2016

Microsoft SharePoint Server 2019

Microsoft SharePoint Server Subscription Edition

Microsoft Teams for Android

Microsoft Teams for Desktop

Microsoft Teams for Mac

Microsoft Teams for iOS

Microsoft Word 2016 (32-bit edition)

Microsoft Word 2016 (64-bit edition)

Office Online Server

 

Open Source Software Suites

Windows Subsystem for Linux (WSL2)

 

SQL Server Family

Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 (GDR)

Microsoft SQL Server 2016 for x64-based Systems Service Pack 3 Azure Connect Feature Pack

Microsoft SQL Server 2017 for x64-based Systems (CU 31)

Microsoft SQL Server 2017 for x64-based Systems (GDR)

Microsoft SQL Server 2019 for x64-based Systems (CU 32)

Microsoft SQL Server 2019 for x64-based Systems (GDR)

Microsoft SQL Server 2022 for x64-based Systems (CU 20)

Microsoft SQL Server 2022 for x64-based Systems (GDR)

 

Server Software Suites

Microsoft Exchange Server 2016 Cumulative Update 23

Microsoft Exchange Server 2019 Cumulative Update 14

Microsoft Exchange Server 2019 Cumulative Update 15

Microsoft Exchange Server Subscription Edition RTM

 

Windows Family

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 22H2 for 32-bit Systems

Windows 10 Version 22H2 for ARM64-based Systems

Windows 10 Version 22H2 for x64-based Systems

Windows 10 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 11 Version 22H2 for ARM64-based Systems

Windows 11 Version 22H2 for x64-based Systems

Windows 11 Version 23H2 for ARM64-based Systems

Windows 11 Version 23H2 for x64-based Systems

Windows 11 Version 24H2 for ARM64-based Systems

Windows 11 Version 24H2 for x64-based Systems

Windows Security App

Windows Server 2016

Windows Server 2016 (Server Core installation)

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server 2022

Windows Server 2022 (Server Core installation)

Windows Server 2022, 23H2 Edition (Server Core installation)

Windows Server 2025

Windows Server 2025 (Server Core installation)

 

Resolved Vulnerabilities

 

13 vulnerabilities rated Critical and 91 rated Important were found.

 

Azure family

Critical elevation of privilege vulnerability in Azure File Sync (CVE-2025-53729)

Critical information disclosure vulnerability in Azure Stack (CVE-2025-53793)

Critical information disclosure vulnerability in Azure Stack (CVE-2025-53765)

Urgent-grade spoofing vulnerability in Azure Virtual Machines (CVE-2025-49707)

Critical information disclosure vulnerability in Azure Virtual Machines (CVE-2025-53781)

 

Browser suites

Low-grade spoofing vulnerability in Microsoft Edge for Android (CVE-2025-49755)

Moderate spoofing vulnerability in Microsoft Edge for Android (CVE-2025-49736)

 

Developer Tools Suite

Critical remote code execution vulnerability in GitHub Copilot and Visual Studio (CVE-2025-53773)

Critical remote code execution vulnerability in Web Deploy (CVE-2025-53772)

 

Device Suite

Critical remote code execution vulnerability in Microsoft Teams (CVE-2025-53783)

 

Microsoft Dynamics Suite

Critical spoofing vulnerability in Microsoft Dynamics 365 (on-premises) (CVE-2025-49745)

Critical information disclosure vulnerability in Microsoft Dynamics 365 (on-premises) (CVE-2025-53728)

 

Microsoft Office Suite

Critical remote code execution vulnerabilities in Microsoft Office Excel (CVE-2025-53741, CVE-2025-53759, CVE-2025-53735, CVE-2025-53737, CVE-2025-53739)

Critical remote code execution vulnerability in Microsoft Office PowerPoint (CVE-2025-53761)

Critical elevation of privilege vulnerability in Microsoft Office SharePoint (CVE-2025-53760)

Critical remote code execution vulnerability in Microsoft Office SharePoint (CVE-2025-49712)

Critical remote code execution vulnerability in Microsoft Office Visio (CVE-2025-53730, CVE-2025-53734)

Critical remote code execution vulnerabilities in Microsoft Office Word (CVE-2025-53733, CVE-2025-53784)

Critical-grade remote code execution vulnerability in Microsoft Office Word (CVE-2025-53738)

Critical information disclosure vulnerability in Microsoft Office Word (CVE-2025-53736)

Urgent-grade remote code execution vulnerabilities in Microsoft Office (CVE-2025-53731, CVE-2025-53740)

Critical-grade remote code execution vulnerability in Microsoft Office (CVE-2025-53732)

 

Open Source Software Suites

Critical-grade privilege escalation vulnerability in Windows Subsystem for Linux (CVE-2025-53788)

 

SQL Server Family

Critical elevation of privilege vulnerabilities in SQL Server (CVE-2025-49758, CVE-2025-53727, CVE-2025-24999, CVE-2025-49759, CVE-2025-47954)

 

Server Software Suites

Critical Tampering Vulnerability in Microsoft Exchange Server (CVE-2025-25005)

Critical Elevation of Privilege Vulnerability in Microsoft Exchange Server (CVE-2025-53786)

Critical Spoofing Vulnerability in Microsoft Exchange Server (CVE-2025-25006, CVE-2025-25007)

Critical information disclosure vulnerability in Microsoft Exchange Server (CVE-2025-33051)

 

Windows Family

Critical elevation of privilege vulnerability in Desktop Windows Manager (CVE-2025-50153)

Critical remote code execution vulnerability in Desktop Windows Manager (CVE-2025-53152)

Critical remote code execution vulnerability in the Graphics Kernel (CVE-2025-50176)

Critical elevation of privilege vulnerability in the Kernel Streaming WOW Thunk Service Driver (CVE-2025-53149)

Critical elevation of privilege vulnerability in Kernel Transaction Manager (CVE-2025-53140)

Critical elevation of privilege vulnerability in Microsoft Brokering File System (CVE-2025-53142)

Critical remote code execution vulnerability in Microsoft Graphics Component (CVE-2025-50165)

Critical elevation of privilege vulnerability in Microsoft Graphics Component (CVE-2025-49743)

Critical elevation of privilege vulnerability in Remote Access Point-to-Point Protocol (PPP) EAP-TLS (CVE-2025-50159)

Critical spoofing vulnerability in Remote Desktop Server (CVE-2025-50171)

Role: Critical remote code execution vulnerability in Windows Hyper-V (CVE-2025-48807)

Role: Critical elevation of privilege vulnerability in Windows Hyper-V (CVE-2025-50167, CVE-2025-53155, CVE-2025-53723)

Role: Critical Denial of Service Vulnerability in Windows Hyper-V (CVE-2025-49751)

Critical information disclosure vulnerability in the Storage Port Driver (CVE-2025-53156)

Critical elevation of privilege vulnerabilities in Windows Ancillary Function Driver for WinSock (CVE-2025-49762, CVE-2025-53134, CVE-2025-53137, CVE-2025-53141, CVE-2025-53147, CVE-2025-53154, CVE-2025-53718)

Critical elevation of privilege vulnerability in the Windows Cloud Files Mini Filter Driver (CVE-2025-50170)

Critical elevation of privilege vulnerability in Windows Connected Devices Platform Service (CVE-2025-53721)

Critical elevation of privilege vulnerability in Windows DirectX (CVE-2025-53135)

Critical Denial of Service Vulnerability in Windows DirectX (CVE-2025-50172)

Critical information disclosure vulnerability in Windows Distributed Transaction Coordinator (CVE-2025-50166)

Critical-grade spoofing vulnerability in Windows File Explorer (CVE-2025-50154)

Critical remote code execution vulnerability in Windows GDI+ (CVE-2025-53766)

Critical elevation of privilege vulnerability in Windows Installer (CVE-2025-50173)

Moderate elevation of privilege vulnerability in Windows Kerberos (CVE-2025-53779)

Critical elevation of privilege vulnerability in Windows Kernel (CVE-2025-49761, CVE-2025-53151)

Critical denial of service vulnerability in Windows Local Security Authority Subsystem Service (LSASS) (CVE-2025-53716)

Critical-grade remote code execution vulnerability in Windows Media (CVE-2025-53131)

Critical-grade remote code execution vulnerability in Windows Message Queuing (CVE-2025-50177)

Critical-grade remote code execution vulnerabilities in Windows Message Queuing (CVE-2025-53143, CVE-2025-53144, CVE-2025-53145)

Critical information disclosure vulnerability in the Windows NT OS Kernel (CVE-2025-53136)

Critical information disclosure vulnerability in Windows NTFS (CVE-2025-50158)

Critical elevation of privilege vulnerability in Windows NTLM (CVE-2025-53778)

Critical elevation of privilege vulnerability in Windows PrintWorkflowUserSvc (CVE-2025-53133)

Critical elevation of privilege vulnerabilities in Windows Push Notifications (CVE-2025-53724, CVE-2025-53725, CVE-2025-53726, CVE-2025-50155)

Critical denial of service vulnerability in Windows Remote Desktop Services (CVE-2025-53722)

Critical remote code execution vulnerabilities in Windows Routing and Remote Access Service (RRAS) (CVE-2025-49757, CVE-2025-50160, CVE-2025-50162, CVE-2025-50163, CVE-2025-50164, CVE-2025-53720)

Critical information disclosure vulnerabilities in Windows Routing and Remote Access Service (RRAS) (CVE-2025-50156, CVE-2025-53138, CVE-2025-53148, CVE-2025-53153, CVE-2025-53719, CVE-2025-50157)

Critical remote code execution vulnerability in Windows SMB (CVE-2025-50169)

Critical spoofing vulnerability in Windows Security App (CVE-2025-53769)

Critical elevation of privilege vulnerability in the Windows StateRepository API (CVE-2025-53789)

Windows Win32K – Critical elevation of privilege vulnerability in GRFX (CVE-2025-50161, CVE-2025-53132)

Windows Win32K – Critical elevation of privilege vulnerability in ICOMP (CVE-2025-50168)

 

Vulnerability Patches

 

The following product-specific Vulnerability Patches were made available with the August 12, 2025 Update Please use the Windows Update feature for automatic installation or refer to the URLs in the product information below to download and install.

Azure File Sync v18

Azure File Sync v19

Azure File Sync v20

Azure File Sync v21

Azure Stack Hub versions

Azure Stack Hub version 2406

Azure Stack Hub version 2408

Azure Stack Hub 2501 version

https://msrc.microsoft.com/update-guide/

Microsoft 365 Apps for Enterprise version

https://msrc.microsoft.com/update-guide/

Microsoft Dynamics 365 (on-premises) version 9.1 version

https://www.microsoft.com/en-us/download/details.aspx?id=108284

https://www.microsoft.com/en-us/download/details.aspx?id=XXXXXX

Microsoft Edge for Android version

https://msrc.microsoft.com/update-guide/

Microsoft Excel 2016 version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002758

Microsoft Exchange Server 2016 Cumulative Update 23 version

https://www.microsoft.com/en-us/download/details.aspx?id=108333

https://www.microsoft.com/en-us/download/details.aspx?id=108147

Microsoft Exchange Server 2019 Cumulative Update 14 version

https://www.microsoft.com/en-us/download/details.aspx?id=108336

https://www.microsoft.com/en-us/download/details.aspx?id=108146

Microsoft Exchange Server 2019 Cumulative Update 15 version

https://www.microsoft.com/en-us/download/details.aspx?id=108334

https://www.microsoft.com/en-us/download/details.aspx?id=108144

Microsoft Exchange Server Subscription Edition RTM version

https://www.microsoft.com/en-us/download/details.aspx?id=108335

https://www.microsoft.com/download/details.aspx?id=108244

Microsoft Office 2016 editions

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002756

Microsoft Office 2019 editions

Microsoft Office LTSC 2021 editions

Microsoft Office LTSC 2024 editions

https://msrc.microsoft.com/update-guide/

Microsoft Office LTSC for Mac 2021 version

Microsoft Office LTSC for Mac 2024 version

Microsoft Office for Android editions

Microsoft Office for Universal editions

https://msrc.microsoft.com/update-guide/

Microsoft PowerPoint 2016 version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002765

Microsoft SQL Server 2016 Service Pack 3 (GDR) version

https://www.microsoft.com/en-us/download/details.aspx?id=108329

Microsoft SQL Server 2016 Service Pack 3 Azure Connect Feature Pack version

https://www.microsoft.com/en-us/download/details.aspx?id=108328

Microsoft SQL Server 2017 (CU 31) version

https://www.microsoft.com/en-us/download/details.aspx?id=108331

Microsoft SQL Server 2017 (GDR) version

https://www.microsoft.com/en-us/download/details.aspx?id=108330

Microsoft SQL Server 2019 (CU 32) editions

https://www.microsoft.com/en-us/download/details.aspx?id=108326

Microsoft SQL Server 2019 (GDR) editions

https://www.microsoft.com/en-us/download/details.aspx?id=108327

Microsoft SQL Server 2022 (CU 20) editions

https://www.microsoft.com/en-us/download/details.aspx?id=108324

Microsoft SQL Server 2022 (GDR) editions

https://www.microsoft.com/en-us/download/details.aspx?id=108325

Microsoft SharePoint Enterprise Server 2016 version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002771

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002772

Microsoft SharePoint Server 2019 editions

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002769

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002770

Microsoft SharePoint Server Subscription Edition version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002773

Microsoft Teams for Android version

Microsoft Teams for Desktop version

Microsoft Teams for Mac version

Microsoft Teams for iOS version

Microsoft Visual Studio 2022 version 17.14 version

https://msrc.microsoft.com/update-guide/

Microsoft Word 2016 version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002763

Office Online Server version

https://www.catalog.update.microsoft.com/Search.aspx?q=KB5002752

Teams Panels version

Teams Phones versions

Teams for D365 Guides Hololens version

Teams for D365 Remote Assist HoloLens version

Web Deploy 4.0 versions

https://msrc.microsoft.com/update-guide/

Windows 10 versions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063889

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062561

Windows 10 Version 1607 Version

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063871

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062560

Windows 10 Version 1809

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063877

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062557

Windows 10 Version 21H2

Windows 10 Version 22H2

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063709

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062554

Windows 11 Version 22H2

Windows 11 Version 23H2

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063875

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062552

Windows 11 Version 24H2

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063878

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5064010

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062553

Windows Security App version

https://www.catalog.update.microsoft.com/Search.aspx?q=KBNone

Windows Server 2008 R2 Service Pack 1 version

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063947

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063927

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062632

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062619

Windows Server 2008 Service Pack 2 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063888

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063948

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062624

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062618

Windows Server 2012 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063906

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062592

Windows Server 2012 R2 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063950

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062597

Windows Server 2016 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063871

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062560

Windows Server 2019 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063877

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062557

Windows Server 2022 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063880

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063812

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062572

Windows Server 2022, 23H2 Edition version

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063899

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062570

Windows Server 2025 editions

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5063878

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5064010

https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB5062553

Windows Subsystem for Linux (WSL2) version

https://msrc.microsoft.com/update-guide/

Tags:
Previous Post

Next Post