Overview

• CyberScoop reports Microsoft addressed 175 vulnerabilities across core products, marking the largest monthly batch from the company this year.
• Two zero‑days were confirmed as exploited in the wild — CVE-2025-24990 in the Agere Windows modem driver and CVE-2025-59230 in Remote Access Connection Manager — with both added to CISA’s Known Exploited Vulnerabilities catalog.
• Microsoft removed the ltmdm64.sys Agere modem driver in the cumulative update, which will disable fax modem hardware that depends on it even if the device is not actively used.
• The release highlights high‑severity risks including CVE-2025-55315 in ASP.NET Core and CVE-2025-49708 in Microsoft Graphics, while Azure Entra ID (CVE-2025-59246) and WSUS (CVE-2025-59287) are flagged as more likely to be exploited.
• Windows 10 exits free security support with this cycle, and Microsoft says mitigations for AMD SEV‑SNP in Azure Confidential Computing clusters are still being completed with customer notifications to follow.