Microsoft Fixes Six Zero-Day Vulnerabilities in October's Patch Tuesday
Microsoft has fixed over 170 CVEs, including six zero-day vulnerabilities, in the latest Patch Tuesday updates.
According to the UK / EMEA News Reporter at Infosecurity Magazine, this month's Patch Tuesday list includes three zero-day vulnerabilities that are being actively exploited.
- CVE-2025-59230: a local elevation of privilege (EoP) bug in the Windows Remote Access Connection Manager.
- CVE-2025-24990: an EoP vulnerability in the third-party Agere Modem driver (ltmdm64.sys) that ships with Windows.
“With no user interaction required, this will go straight into an attacker’s standard toolkit,” warned Rapid7 lead software engineer, Adam Barnett. “There’s very little information in the advisory itself, but someone out there knows exactly how to exploit this vulnerability.”
Author's summary: Microsoft fixes six zero-day vulnerabilities.
More News
- CALL HER DADDY: Final Freestyle Live
- Bills great calls out Brandon Beane for failing Josh Allen
- It's a different world: Woods on Charlie's recruitment process, missing PNC Championship
- Great Smoky Mountains National Park: Charlies Bunion Loop
- Tour news: Rosalía, Taskmaster, Don Letts & Daddy G, De La Soul, LCD Soundsystem, Amyl & The Sniffers, Lily Allen, more
- Erika Kirk on gun violence being root problem that led to Charlie's murder, ‘I support the…’ | Hindustan Times
- Cienega Fine Arts Showcase 2025 Highlights
- From 2600% gain to 86% wipeout, crypto’s hottest trade collapsed
- [collapsed adjective - Definition, pictures, pronunciation and ...]
- Playback: The Law discussed Daddy Lumba’s case