Microsoft Fixes Over 170 Vulnerabilities in October's Patch Tuesday
Microsoft has released security updates to fix 172 vulnerabilities, including six zero-day vulnerabilities, in October's Patch Tuesday.
Three of the zero-day vulnerabilities are being actively exploited, according to reports. One of the vulnerabilities, CVE-2025-59230, is a local elevation of privilege (EoP) bug in the Windows Remote Access Connection Manager.
“With no user interaction required, this will go straight into an attacker’s standard toolkit,” warned Rapid7 lead software engineer, Adam Barnett. “There’s very little information in the advisory itself, but someone out there knows exactly how to exploit this vulnerability.”
Another EoP vulnerability, CVE-2025-24990, was found in the third-party Agere Modem driver (ltmdm64.sys) which ships with Windows.
Author's summary: Microsoft fixes 172 vulnerabilities in October's Patch Tuesday.
More News
- Bob Ross paintings to hit auction block as fundraiser for APT’s Create
- Olivia Nuzzi to spill secrets of RFK Jr. sexting scandal in new book
- Brio and Bravo get strategic investment from R&R Brands
- 1st Test: Noman Ali’s 10-for seals 93-run win for Pakistan over South Africa
- Brendan Gallagher: Furious little bull who was as hard as nails
- TVA faces nuclear outage crisis - Nuclear Engineering International
- Israeli media's distorted view of the war in Gaza
- Local family-friendly Halloween events through Oct. 31
- Photo of person taped to bin is performance art, and nothing to do with ‘Antifa’ – Full Fact
- Ace Nation: Federal Hocking Sweeps Peebles in Straight-Set Tournament Win - WOUB Public Media