Microsoft Fixes Six Zero-Day Vulnerabilities in Latest Patch Tuesday
Microsoft has addressed over 170 CVEs in the October Patch Tuesday, including six zero-day vulnerabilities.
According to UK / EMEA News Reporter, Infosecurity Magazine, this month's Patch Tuesday list includes three zero-day vulnerabilities that are being actively exploited.
- CVE-2025-59230: a local elevation of privilege (EoP) bug in the Windows Remote Access Connection Manager.
- CVE-2025-24990: an EoP vulnerability in the third-party Agere Modem driver (ltmdm64.sys) which ships with Windows.
“With no user interaction required, this will go straight into an attacker’s standard toolkit,” warned Rapid7 lead software engineer, Adam Barnett. “There’s very little information in the advisory itself, but someone out there knows exactly how to exploit this vulnerability.”
Author's summary: Microsoft fixes six zero-day vulnerabilities in October's Patch Tuesday.
More News
- NHL can learn lesson from NBA’s sports gambling scandal as prediction market platform partnerships begin - The Boston Globe
- Fabio Wardley stops Joseph Parker to set up Oleksandr Usyk clash
- The Absurd Prosecution of a Man Who Posted a Charlie Kirk Meme
- Kamala Harris To Run For US President Again
- Crushing defeat for Joseph Parker
- Democratic Education in a Tempest
- Kamala Harris Confirms She's 'Not Done' With Politics and Teases Another Presidential Run: 'It's In My Bones' | Video
- Watch: Zohran Mamdani’s ‘Dream’ resonates with Indian Muslims
- Scotland Demands Better: join us there - TFN
- Thailand's Former Queen Sirikit Dies Aged 93