Patch Tuesday – June 2025

Source: Rapid7 Cybersecurity Blog

Author: Adam Barnett

URL: https://www.rapid7.com/blog/post/2025/06/10/patch-tuesday-june-2025/

ONE SENTENCE SUMMARY:

Microsoft’s June 2025 Patch Tuesday addresses 67 vulnerabilities, including two notable zero-days and eight critical remote code execution flaws.

MAIN POINTS:

1. Microsoft released patches for 67 vulnerabilities in June 2025 Patch Tuesday update.
2. Only one vulnerability, CVE-2025-33053 (WebDAV RCE), is actively exploited in-the-wild.
3. WebDAV vulnerability exploited by threat actor Stealth Falcon targeting Middle Eastern governments.
4. Windows WebDAV implementation has been deprecated since November 2023, reducing default exposure risk.
5. CVE-2025-33073 in Windows SMB Client is a publicly disclosed elevation of privilege vulnerability.
6. Critical RCE vulnerability CVE-2025-33071 affects Windows KDC Proxy Service with exploitation considered likely.
7. Three Office vulnerabilities (CVE-2025-47162, CVE-2025-47164, CVE-2025-47167) leverage Preview Pane for exploitation.
8. Microsoft 365 Apps for Enterprise patches for critical Office vulnerabilities not yet available.
9. Eight critical remote code execution vulnerabilities were disclosed, requiring immediate attention.
10. Two browser vulnerabilities previously published separately are not included in the June 2025 totals.

TAKEAWAYS:

1. Prioritize patching actively exploited WebDAV vulnerability CVE-2025-33053 immediately.
2. Urgently address critical Windows KDC Proxy vulnerability CVE-2025-33071 on exposed servers.
3. Monitor closely the SMB Client vulnerability CVE-2025-33073 due to public disclosure and potential exploitation.
4. Understand Office Preview Pane vulnerabilities significantly increase exploitation risk.
5. Keep aware of the delayed availability of patches for Microsoft 365 Apps for Enterprise.