Tripwire's January 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft.
First on the list are patches for the Microsoft office platform, including Word, Access, Visio, Excel, OneNote, and Outlook. These patches resolve 13 issues such as remote code execution and security feature bypass vulnerabilities.
Next are patches that affect components of the core Windows operating system. These patches resolve over 120 vulnerabilities, including elevation of privilege, information disclosure, and remote code execution vulnerabilities. These vulnerabilities affect core Windows, Kernel, PrintWorkflowUserSvc, Event Tracing, Telephony, BranchCache, Search Service DVM Core, NTLM, COM Server, App Package Installer, and many others.
Up next are patches for .NET, .NET Framework, and Visual Studio that resolve remote code execution, elevation of privilege, and information disclosure vulnerabilities.
Lastly, administrators should focus on server-side patches for Hyper-V, SharePoint, Remote Desktop Services, Active Directory Domain Services, and Active Directory Federation Services. These patches resolve denial of service, remote code execution, spoofing, and elevation of privilege vulnerabilities.
| BULLETIN | CVE |
|---|---|
| Microsoft Office Word | CVE-2025-21363 |
| Microsoft Office Access | CVE-2025-21395, CVE-2025-21366, CVE-2025-21186 |
| Microsoft Office | CVE-2025-21365, CVE-2025-21346 |
| Microsoft Office Visio | CVE-2025-21356, CVE-2025-21345 |
| Microsoft Office Excel | CVE-2025-21362, CVE-2025-21354, CVE-2025-21364 |
| Microsoft Office OneNote | CVE-2025-21402 |
| Microsoft Office Outlook | CVE-2025-21357 |
| Windows I | CVE-2025-21231, CVE-2025-21248, CVE-2025-21243, CVE-2025-21240, CVE-2025-21241, CVE-2025-21252, CVE-2025-21246, CVE-2025-21244, CVE-2025-21245, CVE-2025-21250, CVE-2025-21417, CVE-2025-21413, CVE-2025-21411, CVE-2025-21266, CVE-2025-21306, CVE-2025-21282, CVE-2025-21302, CVE-2025-21409, CVE-2025-21273, CVE-2025-21286, CVE-2025-21305, CVE-2025-21303, CVE-2025-21223, CVE-2025-21239, CVE-2025-21238, CVE-2025-21237, CVE-2025-21236, CVE-2025-21233, CVE-2025-21339, CVE-2025-21211, CVE-2025-21315, CVE-2025-21372, CVE-2025-21336, CVE-2025-21308, CVE-2025-21340, CVE-2025-21360, CVE-2025-21326, CVE-2025-21338, CVE-2025-21295, CVE-2025-21329, CVE-2025-21328, CVE-2025-21268, CVE-2025-21189, CVE-2025-21219, CVE-2025-21332, CVE-2025-21269, CVE-2025-21276, CVE-2025-21257, CVE-2025-21382, CVE-2025-21274 |
| Windows II | CVE-2025-21313, CVE-2025-21296, CVE-2025-21292, CVE-2025-21210, CVE-2025-21284, CVE-2025-21280, CVE-2025-21304, CVE-2025-21378, CVE-2025-21374, CVE-2025-21217, CVE-2025-21311, CVE-2025-21291, CVE-2025-21307, CVE-2025-21314, CVE-2025-21235, CVE-2025-21234, CVE-2025-21298, CVE-2025-21215, CVE-2025-21370, CVE-2025-21385, CVE-2024-7344, CVE-2025-21251, CVE-2025-21270, CVE-2025-21277, CVE-2025-21289, CVE-2025-21285, CVE-2025-21290, CVE-2025-21230, CVE-2025-21220, CVE-2025-21218, CVE-2025-21242, CVE-2025-21299, CVE-2025-21207, CVE-2025-21321, CVE-2025-21320, CVE-2025-21323, CVE-2025-21316, CVE-2025-21317, CVE-2025-21318, CVE-2025-21319, CVE-2025-21389, CVE-2025-21300 |
| Windows III | CVE-2025-21281, CVE-2025-21272, CVE-2025-21288, CVE-2025-21294, CVE-2025-21213, CVE-2025-21214, CVE-2025-21275, CVE-2025-21287, CVE-2025-21331, CVE-2025-21224, CVE-2025-21312, CVE-2025-21271, CVE-2025-21343, CVE-2025-21249, CVE-2025-21324, CVE-2025-21327, CVE-2025-21258, CVE-2025-21260, CVE-2025-21255, CVE-2025-21256, CVE-2025-21310, CVE-2025-21265, CVE-2025-21261, CVE-2025-21263, CVE-2025-21341, CVE-2025-21226, CVE-2025-21227, CVE-2025-21228, CVE-2025-21229, CVE-2025-21232, CVE-2025-21301, CVE-2025-21202 |
| .NET, .NET Framework, Visual Studio | CVE-2025-21176, CVE-2025-21172, CVE-2025-21173, CVE-2025-21171, CVE-2024-50338, CVE-2025-21405, CVE-2025-21178 |
| Active Directory Domain Services | CVE-2025-21293 |
| Active Directory Federation Services | CVE-2025-21193 |
| Windows Remote Desktop Services | CVE-2025-21278, CVE-2025-21225, CVE-2025-21309, CVE-2025-21297, CVE-2025-21330 |
| Windows Hyper-V NT Kernel Integration VSP | CVE-2025-21334, CVE-2025-21335, CVE-2025-21333 |
| Microsoft Office SharePoint | CVE-2025-21344, CVE-2025-21348, CVE-2025-21393 |
