Microsoft Patch Tuesday de junho de 2025

A Microsoft lançou suas atualizações mensais do Patch Tuesday, abordando um total de 66 vulnerabilidades em seu pacote de produtos. Esta versão inclui uma correção para uma vulnerabilidade de dia zero que está sendo explorada ativamente, bem como outra vulnerabilidade que foi divulgada publicamente.

O lançamento de segurança de junho de 2025 representa uma atualização significativa, apresentando 10 vulnerabilidades críticas que exigem atenção imediata de administradores de TI em todo o mundo.

Tag	CVE ID	CVE Title	Severidade
Microsoft Office	CVE-2025-47164	Microsoft Office Remote Code Execution Vulnerability	Critica
Microsoft Office	CVE-2025-47167	Microsoft Office Remote Code Execution Vulnerability	Critica
Microsoft Office	CVE-2025-47162	Microsoft Office Remote Code Execution Vulnerability	Critica
Microsoft Office	CVE-2025-47953	Microsoft Office Remote Code Execution Vulnerability	Critica
Microsoft Office SharePoint	CVE-2025-47172	Microsoft SharePoint Server Remote Code Execution Vulnerability	Critica
Windows Cryptographic Services	CVE-2025-29828	Windows Schannel Remote Code Execution Vulnerability	Critical
Windows KDC Proxy Service (KPSSVC)	CVE-2025-33071	Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability	Critica
Windows Netlogon	CVE-2025-33070	Windows Netlogon Elevation of Privilege Vulnerability	Critica
Windows Remote Desktop Services	CVE-2025-32710	Windows Remote Desktop Services Remote Code Execution Vulnerability	Critica
.NET and Visual Studio	CVE-2025-30399	.NET and Visual Studio Remote Code Execution Vulnerability	Importante
App Control for Business (WDAC)	CVE-2025-33069	Windows App Control for Business Security Feature Bypass Vulnerability	Importante
Microsoft AutoUpdate (MAU)	CVE-2025-47968	Microsoft AutoUpdate (MAU) Elevation of Privilege Vulnerability	Importante
Microsoft Local Security Authority Server (lsasrv)	CVE-2025-33056	Windows Local Security Authority (LSA) Denial of Service Vulnerability	Importante
Microsoft Office	CVE-2025-47173	Microsoft Office Remote Code Execution Vulnerability	Importante
Microsoft Office Excel	CVE-2025-47165	Microsoft Excel Remote Code Execution Vulnerability	Importante
Microsoft Office Excel	CVE-2025-47174	Microsoft Excel Remote Code Execution Vulnerability	Importante
Microsoft Office Outlook	CVE-2025-47171	Microsoft Outlook Remote Code Execution Vulnerability	Importante
Microsoft Office Outlook	CVE-2025-47176	Microsoft Outlook Remote Code Execution Vulnerability	Importante
Microsoft Office PowerPoint	CVE-2025-47175	Microsoft PowerPoint Remote Code Execution Vulnerability	Importante
Microsoft Office SharePoint	CVE-2025-47166	Microsoft SharePoint Server Remote Code Execution Vulnerability	Importante
Microsoft Office SharePoint	CVE-2025-47163	Microsoft SharePoint Server Remote Code Execution Vulnerability	Importante
Microsoft Office Word	CVE-2025-47170	Microsoft Word Remote Code Execution Vulnerability	Importante
Microsoft Office Word	CVE-2025-47957	Microsoft Word Remote Code Execution Vulnerability	Importante
Microsoft Office Word	CVE-2025-47169	Microsoft Word Remote Code Execution Vulnerability	Importante
Microsoft Office Word	CVE-2025-47168	Microsoft Word Remote Code Execution Vulnerability	Importante
Nuance Digital Engagement Platform	CVE-2025-47977	Nuance Digital Engagement Platform Spoofing Vulnerability	Importante
Remote Desktop Client	CVE-2025-32715	Remote Desktop Protocol Client Information Disclosure Vulnerability	Importante
Visual Studio	CVE-2025-47959	Visual Studio Remote Code Execution Vulnerability	Importante
WebDAV	CVE-2025-33053	Web Distributed Authoring and Versioning (WEBDAV) Remote Code Execution Vulnerability	Importante
Windows Common Log File System Driver	CVE-2025-32713	Windows Common Log File System Driver Elevation of Privilege Vulnerability	Importante
Windows DHCP Server	CVE-2025-33050	DHCP Server Service Denial of Service Vulnerability	Importante
Windows DHCP Server	CVE-2025-32725	DHCP Server Service Denial of Service Vulnerability	Importante
Windows DWM Core Library	CVE-2025-33052	Windows DWM Core Library Information Disclosure Vulnerability	Importante
Windows Hello	CVE-2025-47969	Windows Virtualization-Based Security (VBS) Information Disclosure Vulnerability	Importante
Windows Installer	CVE-2025-33075	Windows Installer Elevation of Privilege Vulnerability	Importante
Windows Installer	CVE-2025-32714	Windows Installer Elevation of Privilege Vulnerability	Importante
Windows Kernel	CVE-2025-33067	Windows Task Scheduler Elevation of Privilege Vulnerability	Importante
Windows Local Security Authority (LSA)	CVE-2025-33057	Windows Local Security Authority (LSA) Denial of Service Vulnerability	Importante
Windows Local Security Authority Subsystem Service (LSASS)	CVE-2025-32724	Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability	Importante
Windows Media	CVE-2025-32716	Windows Media Elevation of Privilege Vulnerability	Importante
Windows Recovery Driver	CVE-2025-32721	Windows Recovery Driver Elevation of Privilege Vulnerability	Importante
Windows Remote Access Connection Manager	CVE-2025-47955	Windows Remote Access Connection Manager Elevation of Privilege Vulnerability	Importante
Windows Routing and Remote Access Service (RRAS)	CVE-2025-33064	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	Importante
Windows Routing and Remote Access Service (RRAS)	CVE-2025-33066	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability	Importante
Windows SDK	CVE-2025-47962	Windows SDK Elevation of Privilege Vulnerability	Importante
Windows Secure Boot	CVE-2025-3052	Cert CC: CVE-2025-3052 InsydeH2O Secure Secure Boot Bypass	Importante
Windows Security App	CVE-2025-47956	Windows Security App Spoofing Vulnerability	Importante
Windows Shell	CVE-2025-47160	Windows Shortcut Files Security Feature Bypass Vulnerability	Importante
Windows SMB	CVE-2025-33073	Windows SMB Client Elevation of Privilege Vulnerability	Importante
Windows SMB	CVE-2025-32718	Windows SMB Client Elevation of Privilege Vulnerability	Importante
Windows Standards-Based Storage Management Service	CVE-2025-33068	Windows Standards-Based Storage Management Service Denial of Service Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-24065	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-24068	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-24069	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-32719	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-32720	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33055	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33058	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33059	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33060	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33061	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33062	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33063	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Management Provider	CVE-2025-33065	Windows Storage Management Provider Information Disclosure Vulnerability	Importante
Windows Storage Port Driver	CVE-2025-32722	Windows Storage Port Driver Information Disclosure Vulnerability	Importante
Windows Win32K – GRFX	CVE-2025-32712	Win32k Elevation of Privilege Vulnerability	Importante

Como sempre digo, testem o Patch em um ambiente de homologação.

Related Stories

Como fazer ping em um range de endereços IP pelo cmd do windows

Usando VS Code com WSL

Abrir VS Code pela linha de comando