Microsoft’s April 2025 Patch Tuesday Addresses 121 CVEs (CVE-2025-29824)

On April 8, Microsoft released its April 2025 Patch Tuesday release which patched 121 CVEs with 11 rated as critical and 110 rated as important.

This month’s Patch Tuesday update included one zero-day vulnerability which was exploited in the wild. CVE-2025-29824 is an EoP vulnerability in the Windows Common Log File System (CLFS) Driver. It was assigned a CVSSv3 score of 7.8 and is rated as important. 

This month’s update includes patches for:

• ASP.NET Core
• Active Directory Domain Services
• Azure Local
• Azure Local Cluster
• Azure Portal Windows Admin Center
• Dynamics Business Central
• Microsoft AutoUpdate (MAU)
• Microsoft Edge (Chromium-based)
• Microsoft Edge for iOS
• Microsoft Office
• Microsoft Office Excel
• Microsoft Office OneNote
• Microsoft Office SharePoint
• Microsoft Office Word
• Microsoft Streaming Service
• Microsoft Virtual Hard Drive
• OpenSSH for Windows
• Outlook for Android
• Power Automate
• RPC Endpoint Mapper Service
• Remote Desktop Client
• Remote Desktop Gateway Service
• System Center
• Visual Studio
• Visual Studio Code
• Visual Studio Tools for Applications and SQL Server Management Studio
• Windows Active Directory Certificate Services
• Windows BitLocker
• Windows Bluetooth Service
• Windows Common Log File System Driver
• Windows Cryptographic Services
• Windows DWM Core Library
• Windows Defender Application Control (WDAC)
• Windows Digital Media
• Windows HTTP.sys
• Windows Hello
• Windows Hyper-V
• Windows Installer
• Windows Kerberos
• Windows Kernel
• Windows Kernel Memory
• Windows Kernel-Mode Drivers
• Windows LDAP - Lightweight Directory Access Protocol
• Windows Local Security Authority (LSA)
• Windows Local Session Manager (LSM)
• Windows Mark of the Web (MOTW)
• Windows Media
• Windows Mobile Broadband
• Windows NTFS
• Windows Power Dependency Coordinator
• Windows Remote Desktop Services
• Windows Resilient File System (ReFS)
• Windows Routing and Remote Access Service (RRAS)
• Windows Secure Channel
• Windows Security Zone Mapping
• Windows Shell
• Windows Standards-Based Storage Management Service
• Windows Subsystem for Linux
• Windows TCP/IP
• Windows Telephony Service
• Windows USB Print Driver
• Windows Universal Plug and Play (UPnP) Device Host
• Windows Update Stack
• Windows Virtualization-Based Security (VBS) Enclave
• Windows Win32K - GRFX
• Windows upnphost.dll

For more information, please visit our blog.