Unfold what this Patch Tuesday has in store for you

Q: What is Patch Tuesday?

Patch Tuesday, the colloquial term for Microsoft's Update Tuesday that falls on second Tuesday of every month. That is when Microsoft rolls out patch updates to improve security of the Microsoft applications... more

Q: When is Patch Tuesday?

Patch Tuesday falls on the second Tuesday of each month. The upcoming Patch Tuesday is on ... more

Q: Where can I find more details about individual bulletins?

Each CVE ID listed in the ... more

Patch Tuesday, the unofficial term for Microsoft's scheduled security fix release on every second Tuesday of a month, has been a constant topic of discussion ever since its inception.

Upcoming Webinar

- 11:30 a.m. EST& 6:30 a.m. GMT

Agenda of the Free Patch Tuesday webinar

A complete breakdown of all the latest Patch Tuesday updates
Patch updates that you should be prioritizing
Topical updates in the cyber-security space
Real-time patching scenarios and ways to handle them
Few best practices that you need to employ for an effective patch management

Book your slots here!

First Name ^* Enter a valid first name Enter your first name Last Name ^* Enter a valid last name Enter your last name Email ^* Enter a valid email address Enter your email address Patch Tuesday Training Time (Monthly Once)
Patch Tuesday (Monthly once)

11:30 EST-

6:30 GMT-

Choose your Webinar Series Gain exclusive access to our UEMS Free Training series

11:30 EDT -

6:30 GMT -

By clicking 'Register', you agree to processing of personal data according to the Privacy Policy.
-

Microsoft Patch Tuesday November 2025 - Summary

Nov 112025

Read Blog

134

Patches

63

Vulnerabilities

19

Articles

6

Impacts

CVE Index for November 2025 Patch Tuesday Updates

Critical Vulnerabilities
Zero-day vulnerabilities
Microsoft Windows
Microsoft
Office
Microsoft .NET
Others

Vulnerable Component	Impact	CVE ID
Visual Studio	Remote Code Execution	CVE-2025-62214
Microsoft Office	Remote Code Execution	CVE-2025-62199
GDI+	Remote Code Execution	CVE-2025-60724
DirectX Graphics Kernel	Elevation of Privilege	CVE-2025-60716
Nuance PowerScribe 360	Information Disclosure	CVE-2025-30398

Vulnerable Component	Impact	CVE ID
Windows Kernel	Elevation of Privilege	CVE-2025-62215

CVE ID	Severity	Impact
CVE-2025-62219	Important	Elevation of Privilege
CVE-2025-62218	Important	Elevation of Privilege
CVE-2025-62217	Important	Elevation of Privilege
CVE-2025-62213	Important	Elevation of Privilege
CVE-2025-62209	Important	Information Disclosure
CVE-2025-62208	Important	Information Disclosure
CVE-2025-62206	Important	Information Disclosure
CVE-2025-62452	Important	Remote Code Execution
CVE-2025-60723	Important	Denial of Service
CVE-2025-60721	Important	Elevation of Privilege
CVE-2025-60720	Important	Elevation of Privilege
CVE-2025-60719	Important	Elevation of Privilege
CVE-2025-60718	Important	Elevation of Privilege
CVE-2025-60717	Important	Elevation of Privilege
CVE-2025-60715	Important	Remote Code Execution
CVE-2025-60714	Important	Remote Code Execution
CVE-2025-60713	Important	Elevation of Privilege
CVE-2025-60710	Important	Elevation of Privilege
CVE-2025-60709	Important	Elevation of Privilege
CVE-2025-60706	Important	Information Disclosure
CVE-2025-60705	Important	Elevation of Privilege
CVE-2025-60704	Important	Elevation of Privilege
CVE-2025-60703	Important	Elevation of Privilege
CVE-2025-59515	Important	Elevation of Privilege
CVE-2025-59514	Important	Elevation of Privilege
CVE-2025-59513	Important	Information Disclosure
CVE-2025-59511	Important	Elevation of Privilege
CVE-2025-59510	Important	Denial of Service
CVE-2025-59509	Important	Information Disclosure
CVE-2025-59508	Important	Elevation of Privilege
CVE-2025-59507	Important	Elevation of Privilege
CVE-2025-59506	Important	Elevation of Privilege
CVE-2025-59505	Important	Elevation of Privilege
CVE-2025-47179	Important	Elevation of Privilege
CVE-2025-62220	Important	Remote Code Execution

CVE ID	Severity	Impact
CVE-2025-62216	Important	Remote Code Execution
CVE-2025-62205	Important	Remote Code Execution
CVE-2025-62204	Important	Remote Code Execution
CVE-2025-62203	Important	Remote Code Execution
CVE-2025-62202	Important	Information Disclosure
CVE-2025-62201	Important	Remote Code Execution
CVE-2025-62200	Important	Remote Code Execution
CVE-2025-60728	Important	Information Disclosure
CVE-2025-60727	Important	Remote Code Execution
CVE-2025-60726	Important	Information Disclosure
CVE-2025-59499	Important	Elevation of Privilege
CVE-2025-59240	Important	Information Disclosure

CVE ID	Severity	Impact
CVE-2025-62453	Important	Security Feature Bypass
CVE-2025-62449	Important	Security Feature Bypass
CVE-2025-62222	Important	Remote Code Execution

CVE ID	Severity	Impact
CVE-2025-59504	Important	Remote Code Execution

Vulnerable Component	CVE ID	Severity	Impact
Customer Experience Improvement Program (CEIP)	CVE-2025-59512	Important	Elevation of Privilege
Multimedia Class Scheduler Service (MMCSS) Driver	CVE-2025-60707	Important	Elevation of Privilege
Microsoft OneDrive for Android	CVE-2025-60722	Important	Elevation of Privilege
Storvsp.sys Driver	CVE-2025-60708	Important	Denial of Service
Dynamics 365 Field Service (online)	CVE-2025-62211	Important	Spoofing
Dynamics 365 Field Service (online)	CVE-2025-62210	Important	Spoofing

Previous Patch Tuesday Updates and Fixes

Microsoft Windows Patch Tuesday - Overview

What is Patch Tuesday?

Patch Tuesday or Update Tuesday is the common name for the second Tuesday of every month when Microsoft releases security updates for its operating system and other software. Coinciding with the Patch Tuesday, several other vendors such as Oracle, Mozilla, Adobe, and many others roll out updates for the third-party applications.

When is Patch Tuesday?

Patch Tuesday falls on the second Tuesday of each month. The upcoming Patch Tuesday is on Dec 09, 2025.

What is patching and why is it important?

Patches are nothing but pieces of software code that are written to fix a bug in a software application, that might lead to a vulnerability. Such vulnerabilities in any application are loop holes for attackers to get their hands on business critical data and information. So it is highly crucial to keep all the applications in a network updated to its latest versions. Updating applications in mobile phones and laptops also work in the same manner by preventing theft of personal data, through security flaws.

What kind of patch updates are released during Patch Tuesday?

Predominantly security patch updates of varying severity like Critical, Important, Moderate & Low are labeled and released. Effective Windows patch management involves prioritizing these based on severity, automating deployment, and ensuring rollback or compatibility testing. It is always a best practice to prioritize your patching based on the severity level mentioned.

What are CVE IDs?

CVE ID - Common Vulnerabilities and Exposure ID is a format in which each vulnerability is disclosed and cataloged in the National Vulnerability Database (NVD). You can look up for a detailed explanation of each vulnerability in the NVD with the help of CVE ID. In Patch Manager Plus you can make use of these CVE IDs to fetch the appropriate patches to deploy. You can find the CVE IDs here.

How to register for ManageEngine's Free Patch Tuesday webinar?

The upcoming Free Patch Tuesday webinar by ManageEngine is scheduled on -. You can make your registrations here.

Where can I find more details about individual bulletins?

Each CVE ID listed in the CVE Index section has been linked to its security advisory.