Microsoft Monthly Security Update (April 2025)

Release Date: 9 Apr 2025

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

Microsoft has released monthly security update for their products:

Vulnerable Product	Risk Level	Impacts	Notes
Windows	Medium Risk	Remote Code Execution Information Disclosure Elevation of Privilege Denial of Service Security Restriction Bypass Spoofing	CVE-2025-29824 is being exploited in the wild. This vulnerability allows local attackers to gain SYSTEM privileges on the device/system.
Extended Security Updates (ESU)	Medium Risk	Remote Code Execution Information Disclosure Elevation of Privilege Denial of Service Security Restriction Bypass	CVE-2025-29824 is being exploited in the wild. This vulnerability allows local attackers to gain SYSTEM privileges on the device/system.
Microsoft Office	Medium Risk	Elevation of Privilege Remote Code Execution Security Restriction Bypass
System Center	Medium Risk	Elevation of Privilege
Browser	Medium Risk	Spoofing Remote Code Execution
Microsoft Dynamics	Medium Risk	Information Disclosure
Azure	Medium Risk	Information Disclosure Elevation of Privilege
Developer Tools	Medium Risk	Elevation of Privilege Denial of Service
SQL Server	Medium Risk	Elevation of Privilege
Apps	Medium Risk	Information Disclosure

Number of 'Extremely High Risk' product(s): 0

Number of 'High Risk' product(s): 0

Number of 'Medium Risk' product(s): 10

Number of 'Low Risk' product(s): 0

Evaluation of overall 'Risk Level': Medium Risk

Impact

Before installation of the software, please visit the vendor web-site for more details.