Serial number: AV25-333
Date: June 10, 2025
Updated: June 13, 2025
On June 10, 2025, Microsoft published security advisories to address vulnerabilities in multiple products. Included were critical updates for the following products:
- .NET 8.0 and 9.0 – versions 8.0.17 and 9.0.6, multiple platforms
- Microsoft 365 Apps – multiple versions and platforms
- Microsoft AutoUpdate for Mac
- Microsoft Excel 2016
- Microsoft Office – multiple versions and platforms
- Microsoft Outlook 2016
- Microsoft PowerPoint 2016
- Microsoft Sharepoint Server – multiple versions and platforms
- Microsoft Visual Studio 2022 – versions 17.12.9, 17.8.22, 17.10.16, and 17.14.5
- Microsoft Word 2016
- Nuance Digital Engagement Platform
- Remote Desktop client for Windows Desktop
- Windows 10 – multiple versions and platforms
- Windows 11 – multiple versions and platforms
- Windows App Client for Windows Desktop
- Windows Server – multiple versions and platforms
Update 1
On June 10, 2025, open-source reporting indicated that the Microsoft Windows WebDAV 0-Day vulnerability CVE-2025-33053 and Windows SMB Client 0–Day CVE-2025-33073 have been actively exploited in the wild.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.