Serial number: AV25-504
Date: August 13, 2025
On August 12, 2025, Microsoft published security advisories to address vulnerabilities in multiple products. Included were critical updates for the following products:
- Azure File Sync
- Azure Open AI
- Azure Portal
- Azure Stack Hub
- DCadsv5-series Azure VM
- DCasv5-series Azure VM
- DCesv5-series - Azure VM
- DCesv6-series Azure VM
- ECadsv5-series Azure VM
- ECedsv5-series Azure VM
- Ecesv6-series Azure VM
- Microsoft 365
- Microsoft Dynamics 365
- Microsoft Edge
- Microsoft Excel 2016
- Microsoft Exchange Server
- Microsoft Office
- Microsoft PowerPoint
- Microsoft SQL Server
- Microsoft SharePoint
- Microsoft Teams
- Microsoft Visual Studio 2022 version 17.14
- Microsoft Word 2016
- NCCadsH100v5-series Azure VM
- Office Online Server
- Teams Panels
- Teams Phones
- Web Deploy 4.0
- Windows 10
- Windows 11
- Windows Security App
- Windows Server
- Windows Subsystem for Linux
Microsoft has indicated that CVE-2025-53779 and CVE-2025-49719 have available exploits.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.