[CIVN-2025-0195] Multiple Vulnerabilities in Microsoft Products
—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA256
Multiple Vulnerabilities in Microsoft Products
Indian – Computer Emergency Response Team (https://www.cert-in.org.in)
Severity Rating: HIGH
Software Affected
Microsoft Edge (Chromium-based)
Windows Server (Storage component)
Windows Certificates component
Windows MBT Transport driver
Microsoft PC Manager
Azure Databricks
Overview
Multiple vulnerabilities have been reported in Microsoft Products which could allow an attacker to execute arbitrary code, gain elevated privileges, spoof cryptographic signatures, or bypass access controls on the targeted system.
Target Audience:
Individuals and IT administrators, security teams responsible for maintaining and updating Microsoft products.
Risk Assessment:
Risk of remote code execution, system instability or sensitive information disclosure.
Impact Assessment:
Potential compromise of system, exfiltration of data, ransomware attacks or system crashes.
Description
Multiple vulnerabilities exist in multiple Microsoft product components including Edge, Windows Server Storage, Certificates, MBT Transport driver, PC Manager, and Azure Databricks.
Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, gain elevated privileges, spoof cryptographic signatures, or bypass access controls on the targeted system.
Solution
Apply appropriate security updates as mentioned in:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-9132
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55231
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55229
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55230
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53795
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53763
Vendor Information
Microsoft
https://msrc.microsoft.com/update-guide/
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-9132
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55231
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55229
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-55230
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53795
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53763
CVE Name
CVE-2025-9132
CVE-2025-55231
CVE-2025-55229
CVE-2025-55230
CVE-2025-53795
CVE-2025-53763
– —
Thanks and Regards,
CERT-In
Incident Response Help Desk
e-mail: incident@cert-in.org.in
Phone: +91-11-22902657
Toll Free Number: 1800-11-4949
Toll Free Fax : 1800-11-6969
Web: http://www.cert-in.org.in
PGP Fingerprint: A768 083E 4475 5725 B81A A379 2156 C0C0 B620 D0B4
PGP Key information:
https://www.cert-in.org.in/s2cMainServlet?pageid=CONTACTUS
Postal address:
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003
—–BEGIN PGP SIGNATURE—–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=Qix1
—–END PGP SIGNATURE—–
![[CIVN-2025-0194] Multiple Vulnerabilities in Mozilla Products](https://teamwin.in/wp-content/uploads/2025/06/certin-new-e1751351599950-500x383.png)
