Microsoft Releases June 2025 Patch Tuesday Updates

Microsoft has released the June 2025 Patch Tuesday updates for Windows 11 and Windows 10 PCs. On the security front, the company has addressed over 60 vulnerabilities in Windows and Windows Components, Office, and other components.

On the quality and experiences update front, Microsoft has fixed an issue that was previously preventing users from signing in with self-signed certificates when using Windows Hello for Business with the Key Trust model on Windows 11 PCs.​​​​​​​ The company has also addressed an issue with Hyper-V virtual machines on Windows 10, Windows 11, and Windows Server.

66 vulnerabilities fixed with the June 2025 Patch Tuesday updates

As pointed out by the Zero Day Initiative, Microsoft has fixed 66 new vulnerabilities this month, including 10 Critical ones. However, one of them is currently being exploited by attackers. Let’s take a look at the most important vulnerabilities Microsoft fixed this month:

• CVE-2025-33053: This is a remote code execution (RCE) vulnerability in the Web Distributed Authoring and Versioning (WebDAV) protocol with a CVSS score of 8.8. An attacker could exploit this flaw by tricking a targeted victim into clicking on a malicious URL or visiting a compromised website.
• CVE-2025-33073: This is a Windows Server Message Block (SMB) client vulnerability that could allow the attacker to gain system-level privileges. This bug could be exploited by tricking the user into signing onto a malicious server.
• CVE-2025-47172: This is a critical remote code execution flaw in Microsoft SharePoint with a CVSS score of 8.8. A successful exploitation allows an authenticated attacker to execute malicious code over the network.
• CVE-2025-29828: This is a memory leak issue in Windows Schannel, with a CVSS score of 8.1. Windows Schannel (Secure Channel) is a security support provider (SSP) that comes built into Microsoft Windows.
• CVE-2025-32710: This is a remote code execution flaw in Windows Remote Desktop Services, which could allow unauthorized access to the target machine.
• CVE-2025-33070: This is an elevation of privilege vulnerability in Windows Netlogon that would require a “complex” attack to exploit.

You can find below the full list of security patches Microsoft released this month:

Quality and experience updates

For users running Windows 11 versions 24H2, 23H2, and 22H2, the latest update brings several new features, including a new keyboard shortcut for opening Copilot, a new Drag Tray share UI, and Windows Share image editing features. Microsoft has also introduced a new policy that lets IT admins manage Energy Saver settings on Windows 11 devices via group policies and MDM configurations using Microsoft Intune.

The Click to Do feature is now also available to users in the European Economic Area (EEA). In addition, administrators can configure taskbar policies that allow users to unpin specific apps, ensuring they don’t reappear after the next policy refresh. Keep in mind that Microsoft is gradually rolling out the latest Patch Tuesday updates to PCs running Windows 11 version 24H2. The company has identified a compatibility issue that affects select Windows 11 devices.

For Windows 10 users on versions 22H2 and 21H2, the KB5060533 cumulative update includes a few notable changes. It restores the clock view showing seconds on the Calendar taskbar flyout and fixes a bug that caused certain Hyper-V virtual machines running Windows 10, Windows 11, or Windows Server to freeze or reboot unexpectedly.

Windows Update testing and best practices

Organizations looking to deploy this month’s patches should conduct thorough testing before deploying them widely on production systems. That said, applying the patches widely shouldn’t be delayed longer than necessary, as hackers start to work out how to weaponize newly reported vulnerabilities.

A best practice is to make sure you have backed up systems before applying updates. Every month, users experience issues with Windows updates that lead to systems not booting, application and hardware compatibility issues, or even data loss in extreme cases.

There are backup tools built into Windows and Windows Server that you can use to restore systems in the event a patch causes a problem. The backup features in Windows can be used to restore an entire system or files and folders on a granular basis.