Microsoft August 2025 Patch Tuesday fixes one zero-day, 107 flaws

Summarize this content to 600 words Tag
CVE ID
CVE Title
Severity
Azure File Sync
CVE-2025-53729
Microsoft Azure File Sync Elevation of Privilege Vulnerability
Important
Azure Stack
CVE-2025-53793
Azure Stack Hub Information Disclosure Vulnerability
Critical
Azure Stack
CVE-2025-53765
Azure Stack Hub Information Disclosure Vulnerability
Important
Azure Virtual Machines
CVE-2025-49707
Azure Virtual Machines Spoofing Vulnerability
Critical
Azure Virtual Machines
CVE-2025-53781
Azure Virtual Machines Information Disclosure Vulnerability
Critical
Desktop Windows Manager
CVE-2025-53152
Desktop Windows Manager Remote Code Execution Vulnerability
Important
Desktop Windows Manager
CVE-2025-50153
Desktop Windows Manager Elevation of Privilege Vulnerability
Important
GitHub Copilot and Visual Studio
CVE-2025-53773
GitHub Copilot and Visual Studio Remote Code Execution Vulnerability
Important
Graphics Kernel
CVE-2025-50176
DirectX Graphics Kernel Remote Code Execution Vulnerability
Critical
Kernel Streaming WOW Thunk Service Driver
CVE-2025-53149
Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability
Important
Kernel Transaction Manager
CVE-2025-53140
Windows Kernel Transaction Manager Elevation of Privilege Vulnerability
Important
Microsoft Brokering File System
CVE-2025-53142
Microsoft Brokering File System Elevation of Privilege Vulnerability
Important
Microsoft Dynamics 365 (on-premises)
CVE-2025-49745
Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability
Important
Microsoft Dynamics 365 (on-premises)
CVE-2025-53728
Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability
Important
Microsoft Edge for Android
CVE-2025-49755
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Low
Microsoft Edge for Android
CVE-2025-49736
Microsoft Edge (Chromium-based) for Android Spoofing Vulnerability
Moderate
Microsoft Exchange Server
CVE-2025-25005
Microsoft Exchange Server Tampering Vulnerability
Important
Microsoft Exchange Server
CVE-2025-25006
Microsoft Exchange Server Spoofing Vulnerability
Important
Microsoft Exchange Server
CVE-2025-25007
Microsoft Exchange Server Spoofing Vulnerability
Important
Microsoft Exchange Server
CVE-2025-53786
Microsoft Exchange Server Hybrid Deployment Elevation of Privilege Vulnerability
Important
Microsoft Exchange Server
CVE-2025-33051
Microsoft Exchange Server Information Disclosure Vulnerability
Important
Microsoft Graphics Component
CVE-2025-49743
Windows Graphics Component Elevation of Privilege Vulnerability
Important
Microsoft Graphics Component
CVE-2025-50165
Windows Graphics Component Remote Code Execution Vulnerability
Critical
Microsoft Office
CVE-2025-53732
Microsoft Office Remote Code Execution Vulnerability
Important
Microsoft Office
CVE-2025-53740
Microsoft Office Remote Code Execution Vulnerability
Critical
Microsoft Office
CVE-2025-53731
Microsoft Office Remote Code Execution Vulnerability
Critical
Microsoft Office Excel
CVE-2025-53759
Microsoft Excel Remote Code Execution Vulnerability
Important
Microsoft Office Excel
CVE-2025-53737
Microsoft Excel Remote Code Execution Vulnerability
Important
Microsoft Office Excel
CVE-2025-53739
Microsoft Excel Remote Code Execution Vulnerability
Important
Microsoft Office Excel
CVE-2025-53735
Microsoft Excel Remote Code Execution Vulnerability
Important
Microsoft Office Excel
CVE-2025-53741
Microsoft Excel Remote Code Execution Vulnerability
Important
Microsoft Office PowerPoint
CVE-2025-53761
Microsoft PowerPoint Remote Code Execution Vulnerability
Important
Microsoft Office SharePoint
CVE-2025-53760
Microsoft SharePoint Elevation of Privilege Vulnerability
Important
Microsoft Office SharePoint
CVE-2025-49712
Microsoft SharePoint Remote Code Execution Vulnerability
Important
Microsoft Office Visio
CVE-2025-53730
Microsoft Office Visio Remote Code Execution Vulnerability
Important
Microsoft Office Visio
CVE-2025-53734
Microsoft Office Visio Remote Code Execution Vulnerability
Important
Microsoft Office Word
CVE-2025-53738
Microsoft Word Remote Code Execution Vulnerability
Important
Microsoft Office Word
CVE-2025-53736
Microsoft Word Information Disclosure Vulnerability
Important
Microsoft Office Word
CVE-2025-53784
Microsoft Word Remote Code Execution Vulnerability
Critical
Microsoft Office Word
CVE-2025-53733
Microsoft Word Remote Code Execution Vulnerability
Critical
Microsoft Teams
CVE-2025-53783
Microsoft Teams Remote Code Execution Vulnerability
Important
Remote Access Point-to-Point Protocol (PPP) EAP-TLS
CVE-2025-50159
Remote Access Point-to-Point Protocol (PPP) EAP-TLS Elevation of Privilege Vulnerability
Important
Remote Desktop Server
CVE-2025-50171
Remote Desktop Spoofing Vulnerability
Important
Role: Windows Hyper-V
CVE-2025-50167
Windows Hyper-V Elevation of Privilege Vulnerability
Important
Role: Windows Hyper-V
CVE-2025-53155
Windows Hyper-V Elevation of Privilege Vulnerability
Important
Role: Windows Hyper-V
CVE-2025-49751
Windows Hyper-V Denial of Service Vulnerability
Important
Role: Windows Hyper-V
CVE-2025-53723
Windows Hyper-V Elevation of Privilege Vulnerability
Important
Role: Windows Hyper-V
CVE-2025-48807
Windows Hyper-V Remote Code Execution Vulnerability
Critical
SQL Server
CVE-2025-49758
Microsoft SQL Server Elevation of Privilege Vulnerability
Important
SQL Server
CVE-2025-24999
Microsoft SQL Server Elevation of Privilege Vulnerability
Important
SQL Server
CVE-2025-53727
Microsoft SQL Server Elevation of Privilege Vulnerability
Important
SQL Server
CVE-2025-49759
Microsoft SQL Server Elevation of Privilege Vulnerability
Important
SQL Server
CVE-2025-47954
Microsoft SQL Server Elevation of Privilege Vulnerability
Important
Storage Port Driver
CVE-2025-53156
Windows Storage Port Driver Information Disclosure Vulnerability
Important
Web Deploy
CVE-2025-53772
Web Deploy Remote Code Execution Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53718
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53134
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-49762
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53147
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53154
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53137
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Ancillary Function Driver for WinSock
CVE-2025-53141
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
Important
Windows Cloud Files Mini Filter Driver
CVE-2025-50170
Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability
Important
Windows Connected Devices Platform Service
CVE-2025-53721
Windows Connected Devices Platform Service Elevation of Privilege Vulnerability
Important
Windows DirectX
CVE-2025-53135
DirectX Graphics Kernel Elevation of Privilege Vulnerability
Important
Windows DirectX
CVE-2025-50172
DirectX Graphics Kernel Denial of Service Vulnerability
Important
Windows Distributed Transaction Coordinator
CVE-2025-50166
Windows Distributed Transaction Coordinator (MSDTC) Information Disclosure Vulnerability
Important
Windows File Explorer
CVE-2025-50154
Microsoft Windows File Explorer Spoofing Vulnerability
Important
Windows GDI+
CVE-2025-53766
GDI+ Remote Code Execution Vulnerability
Critical
Windows Installer
CVE-2025-50173
Windows Installer Elevation of Privilege Vulnerability
Important
Windows Kerberos
CVE-2025-53779
Windows Kerberos Elevation of Privilege Vulnerability
Moderate
Windows Kernel
CVE-2025-49761
Windows Kernel Elevation of Privilege Vulnerability
Important
Windows Kernel
CVE-2025-53151
Windows Kernel Elevation of Privilege Vulnerability
Important
Windows Local Security Authority Subsystem Service (LSASS)
CVE-2025-53716
Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability
Important
Windows Media
CVE-2025-53131
Windows Media Remote Code Execution Vulnerability
Important
Windows Message Queuing
CVE-2025-53145
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Important
Windows Message Queuing
CVE-2025-53143
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Important
Windows Message Queuing
CVE-2025-50177
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Critical
Windows Message Queuing
CVE-2025-53144
Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability
Important
Windows NT OS Kernel
CVE-2025-53136
NT OS Kernel Information Disclosure Vulnerability
Important
Windows NTFS
CVE-2025-50158
Windows NTFS Information Disclosure Vulnerability
Important
Windows NTLM
CVE-2025-53778
Windows NTLM Elevation of Privilege Vulnerability
Critical
Windows PrintWorkflowUserSvc
CVE-2025-53133
Windows PrintWorkflowUserSvc Elevation of Privilege Vulnerability
Important
Windows Push Notifications
CVE-2025-53725
Windows Push Notifications Apps Elevation of Privilege Vulnerability
Important
Windows Push Notifications
CVE-2025-53724
Windows Push Notifications Apps Elevation of Privilege Vulnerability
Important
Windows Push Notifications
CVE-2025-50155
Windows Push Notifications Apps Elevation of Privilege Vulnerability
Important
Windows Push Notifications
CVE-2025-53726
Windows Push Notifications Apps Elevation of Privilege Vulnerability
Important
Windows Remote Desktop Services
CVE-2025-53722
Windows Remote Desktop Services Denial of Service Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50157
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-53153
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50163
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50162
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50164
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-53148
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-53138
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50156
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-49757
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-53719
Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-53720
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Routing and Remote Access Service (RRAS)
CVE-2025-50160
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Important
Windows Security App
CVE-2025-53769
Windows Security App Spoofing Vulnerability
Important
Windows SMB
CVE-2025-50169
Windows SMB Remote Code Execution Vulnerability
Important
Windows StateRepository API
CVE-2025-53789
Windows StateRepository API Server file Elevation of Privilege Vulnerability
Important
Windows Subsystem for Linux
CVE-2025-53788
Windows Subsystem for Linux (WSL2) Kernel Elevation of Privilege Vulnerability
Important
Windows Win32K – GRFX
CVE-2025-50161
Win32k Elevation of Privilege Vulnerability
Important
Windows Win32K – GRFX
CVE-2025-53132
Win32k Elevation of Privilege Vulnerability
Important
Windows Win32K – ICOMP
CVE-2025-50168
Win32k Elevation of Privilege Vulnerability
Important

Enlace de la fuente, haz clic para tener más información

Artículos y alertas de seguridad

Consultar más contenidos y alertas

Alertas y noticias de seguridad de la información

Vulnerabilidades en productos de Fortinet

Summarize this content to 600 words Publicado: 2025-08-13 13:13 Vulnerabilidad Fortinet En relación con Patchtis Day, Fortinet informa sobre varias vulnerabilidades. Una vulnerabilidad (CVE-2025-25256) se

...
Más detalle de la noticia

ALERTA DE SEGURIDAD: Microsoft publica actualizaciones de seguridad en agosto de 2025

Summarize this content to 600 words ALERTA DE SEGURIDAD: Microsoft publica actualizaciones de seguridad en agosto de 2025 Enlace de la fuente, haz clic para

...
Más detalle de la noticia

Alarm Microsoft Products Vulnerabilidades – Agosto de 2025 – Instituto Nacional de Defensa Cibernética

Summarize this content to 600 words ¡Estimado cliente! Instituto de Seguridad Nacional para la Defensa Cibernética (NBSZ NKI) alarma da un Microsoft software riesgo crítico

...
Más detalle de la noticia

Vulnerabilidades múltiples de los productos Ivanti

Summarize this content to 600 words Se han identificado múltiples vulnerabilidades en productos Ivanti. Un atacante remoto podría explotar estas vulnerabilidades para desencadenar la condición

...
Más detalle de la noticia

Alerta de seguridad de alta amenaza (A25-08-07): vulnerabilidades múltiples en productos de Microsoft (agosto de 2025)

Summarize this content to 600 words Descripción: Microsoft ha lanzado actualizaciones de seguridad que abordan múltiples vulnerabilidades que afectan varios productos o componentes de Microsoft.

...
Más detalle de la noticia

Microsoft agosto de 2025 actualizaciones de seguridad

Summarize this content to 600 words Clasificación: Crítica, Solución: solución oficial, vencimiento de exploits: funcional, CVSSV3.1: 9.8, CVE :, Resumen: Microsoft ha lanzado actualizaciones de

...
Más detalle de la noticia

Microsoft August 2025 Patch Tuesday fixes one zero-day, 107 flaws

Summarize this content to 600 words Tag CVE ID CVE Title Severity Azure File Sync CVE-2025-53729 Microsoft Azure File Sync Elevation of Privilege Vulnerability Important

...
Más detalle de la noticia

Microsoft Patchetier Day Agosto de 2025 – Autoridad de Seguridad Nacional

Summarize this content to 600 words Según las razones técnicas, NCSC no ha tenido la oportunidad de evaluar el contenido del Día de Patchet de

...
Más detalle de la noticia

(Sistemas de control) Asesor de seguridad Siemens (AV25-502)

Summarize this content to 600 words Número de serie: AV25-502Fecha: 12 de agosto de 2025 Entre el 12 de agosto de 2025, Siemens publicó avisos

...
Más detalle de la noticia

Johnson controla Istar Ultra, Istar Ultra SE, Istar Ultra G2, Istar Ultra G2 SE, Istar Edge G2

Summarize this content to 600 words Ver CSAF 1. Resumen ejecutivo CVSS V4 8.7 ATENCIÓN: Explotable de forma remota/baja complejidad de ataque Proveedor: Johnson controla

...
Más detalle de la noticia

Introducción a la computación en la nube (ITSAP.50.110)

Summarize this content to 600 words Agosto de 2025 | Serie de concientización La computación en la nube es la entrega a pedido de los

...
Más detalle de la noticia

SAP Security Avisory-agosto de 2025 Monthly Rollup (AV25-500)

Summarize this content to 600 words Número de serie: AV25-500Fecha: 12 de agosto de 2025 El 12 de agosto de 2025, SAP publicó avisos de

...
Más detalle de la noticia

Vulnerabilidad en Centeron Gorgone (12 de agosto de 2025)

Summarize this content to 600 words La vulnerabilidad ha sido descubierta en Centeron Gorgon. Permite a un atacante provocar una ejecución de código arbitrario de

...
Más detalle de la noticia

Revisión semanal del Centro Nacional de Seguridad Cibernética Finlandia (NCSC -FI) – 32/2025

Summarize this content to 600 words Mantenga el control: fortalezca los hábitos de seguridad de la información cotidiana a medida que comienzan las escuelasA principios

...
Más detalle de la noticia

Vulnerabilidades múltiples de Zimbra

Summarize this content to 600 words Se identificaron múltiples vulnerabilidades en Zimbra. Un atacante remoto podría explotar algunas de estas vulnerabilidades para desencadenar el derivación

...
Más detalle de la noticia
Contacta

Contacta con nosotros para obtener soluciones integrales en IT y seguridad de la información

Estamos encantados de responder cualquier pregunta que puedas tener, y ayudarte a determinar cuáles de nuestros servicios se adaptan mejor a tus necesidades.

Llámanos: Pulsa aquí
Nuestros beneficios:
  • Orientación a cliente
  • Independencia de proveedores
  • Competencias contrastadas y certificadas
  • Orientación a resultados (KPIs)
  • Resolución de problemas
  • Transparencia
¿Qué sucede a continuación?
1

Programamos una llamada según tu conveniencia.

2

Realizamos una reunión de descubrimiento y consultoría.

3

Preparamos una propuesta.

Agenda una consulta gratuita