Article Details

Microsoft Fixes 78 Flaws, 5 Zero-Days Exploited; CVSS 10 Bug Impacts Azure DevOps Server

Source: The Hacker News
Published: 2025-05-14 08:14
Fetched: 2025-05-14 09:17
Read Original Article

Summary

Microsoft has released patches for 78 security vulnerabilities, including five zero-day exploits that are actively being used by attackers. Among these, 11 are deemed Critical, while 66 are Important, and one is Low in severity. A particularly severe flaw, rated CVSS 10, affects Azure DevOps Server, posing significant risks of remote code execution. These vulnerabilities highlight the ongoing threats faced by organizations using Microsoft's software, emphasizing the importance of timely updates. The active exploitation of zero-day vulnerabilities further underscores the need for robust cybersecurity measures to protect sensitive data and infrastructure.

LinkedIn Post

Microsoft addresses 78 security flaws, including 5 active zero-days and a critical CVSS 10 bug in Azure DevOps Server. This highlights the urgent need for timely updates and robust security practices. #Cybersecurity #Microsoft #ZeroDay #AzureDevOps

Content

Microsoft on Tuesday shipped fixes to address a total of 78 security flaws across its software lineup, including a set of five zero-days that have come under active exploitation in the wild. Of the 78 flaws resolved by the tech giant, 11 are rated Critical, 66 are rated Important, and one is rated Low in severity. Twenty-eight of these vulnerabilities lead to remote code execution, 21 of them