Microsoft Releases December 2025 Patch Tuesday Updates with 56 Security Fixes

Microsoft has released the December 2025 Patch Tuesday updates for Windows 11 versions 25H2 and 24H2. This month, the company rolled out 56 new patches to address vulnerabilities in Windows, Office, Exchange Server, Azure, PowerShell, Windows Defender, and other components.

On the quality and experience updates front, Microsoft has introduced a couple of improvements for Windows 11 version 25H2 and 24H2. The company has also announced that it will skip releasing an optional preview update later this month because activity typically slows down during the holiday season.

56 vulnerabilities fixed in the December 2025 Patch Tuesday updates

As pointed out by Zero Day Initiative, Microsoft has fixed a total of 56 security flaws, three of which are deemed Critical. The rest of the vulnerabilities are rated as Important in terms of severity. Here’s a list of the most notable flaws Microsoft addressed in December:

• CVE-2025-62221: This is a Windows Cloud Files Mini Filter Driver vulnerability with a CVSS score of 7.8. It enables an authorized attacker to elevate privileges locally on a vulnerable Windows machine.
• CVE-2025-54100: This is a remote code execution (RCE) vulnerability in Windows PowerShell, which carries a CVSS score of 7.8. This bug allows unauthenticated local attackers to execute arbitrary code by exploiting a command injection weakness in PowerShell.
• CVE-2025-64671: This is a high-severity RCE vulnerability that affects the GitHub Copilot for JetBrains code completion tools. This security flaw is caused by improper sanitization of special elements used in command construction.
• CVE-2025-62554: This is a high-severity type-confusion vulnerability in Microsoft Office that allows an unauthorized attacker to execute code locally by exploiting incompatible type usage in resource handling. The flaw can be triggered simply by previewing a specially crafted email in the Office Preview Pane.

You can find the full list of CVEs addressed in the December 2025 Patch Tuesday Updates below:

Quality and experience updates

Microsoft has rolled out the KB5072033 update for Windows 11 versions 25H2 and 24H2. This update brings several new features and capabilities for customers with Copilot+ PCs. The AI agent in Settings now provides an enhanced search experience with more results, quick-change recommendations, and explanatory dialogs. The Click to Do menu is also streamlined for easier access, and Windows Studio Effects supports secondary USB webcams.

Additionally, Microsoft has fixed a bug that was previously causing external virtual switches to lose their physical network adapter (NIC) bindings after a host restart. Moreover, the company has fixed a File Explorer that caused the app to flash white when users navigated between pages briefly. In PowerShell, the Invoke-WebRequest now includes a confirmation prompt with a security warning of script execution risk.

Windows Update testing and best practices

Microsoft advises organizations to perform thorough testing to confirm that updates do not compromise the stability of their production systems. However, it is crucial to deploy Patch Tuesday updates to proactively address potential threats.

Additionally, IT administrators must prioritize backing up their systems before applying updates, utilizing the built-in backup features of Windows and Windows Server. These features allow for the restoration of specific files and folders or entire systems as required.

Last but not least, organizations should consistently monitor their systems for anomalies or unexpected behaviors. Regular monitoring is essential for staying vigilant against emerging risks and adopting appropriate security measures.