Security News > 2025 > January > Microsoft fixes actively exploited Windows Hyper-V zero-day flaws
2025-01-14 20:57
Microsoft has marked January 2025 Patch Tuesday with a hefty load of patches: 157 CVE-numbered security issues have been fixed in various products, three of which (in Hyper-V) are being actively exploited. The exploited Hyper-V vulnerabilities The exploited zero-days are CVE-2025-21333 (a buffer overflow bug), CVE-2025-21334 and CVE-2025-21335 (use after free flaws), and they all allow attackers to elevated their privilege to SYSTEM on compromised Windows and Windows Server machines. They affect a component of … More → The post Microsoft fixes actively exploited Windows Hyper-V zero-day flaws appeared first on Help Net Security.
News URL
Related news
- Microsoft patches Windows Kernel zero-day exploited since 2023 (source)
- Microsoft February 2025 Patch Tuesday fixes 4 zero-days, 55 flaws (source)
- Windows 10 KB5051974 update force installs new Microsoft Outlook app (source)
- Microsoft fixes two actively exploited zero-days (CVE-2025-21418, CVE-2025-21391) (source)
- Patch Tuesday: Microsoft Patches Two Actively Exploited Zero-Day Flaws (source)
- FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
- Microsoft fixes bug causing Windows Server 2025 boot errors (source)
- Microsoft to remove the Location History feature in Windows (source)
- Microsoft testing fix for Windows 11 bug breaking SSH connections (source)
- Microsoft fixes Power Pages zero-day bug exploited in attacks (source)
Related Vulnerability
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-01-14 | CVE-2025-21335 | Unspecified vulnerability in Microsoft products Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | 0.0 |
| 2025-01-14 | CVE-2025-21334 | Unspecified vulnerability in Microsoft products Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | 0.0 |
| 2025-01-14 | CVE-2025-21333 | Unspecified vulnerability in Microsoft products Windows Hyper-V NT Kernel Integration VSP Elevation of Privilege Vulnerability | 7.8 |