Home / Security updates / Microsoft Announcement; 56 security vulnerabilities across Windows, Office, Exchange Server, and other components
Microsoft Announcement; 56 security vulnerabilities across Windows, Office, Exchange Server, and other components
Security updates detail rendered from /security-updates/upd_e1065da04fde0be6.
Overview
| ID | upd_e1065da04fde0be6 |
| Collection | Security Updates |
| Provider | SafeBase |
| Company | Broadridge |
| URL | - |
| Counts | - |
| Updated | - |
Raw record
| Field | Value |
|---|---|
| id | upd_e1065da04fde0be6 |
| providerId | safebase |
| organizationId | org_d6453fb8c77f0b6a |
| trustCenterId | tc_c6ca607ff40394b4 |
| title | Microsoft Announcement; 56 security vulnerabilities across Windows, Office, Exchange Server, and other components |
| message | BROADRIDGE RESPONSE STATEMENT On December 9th, 2025, Broadridge was notified about a recent announcement from Microsoft where they released its final Patch Tuesday updates addressing 56 security vulnerabilities across Windows, Office, Exchange Server, and other components. This patch includes three zero-day flaws (CVE-2025-62221, CVE-2025-64671, and CVE-2025-54100): two publicly disclosed remote code execution issues and one actively exploited elevation of privilege vulnerability. The vulnerabilities CVE-2025-62221, CVE-2025-64671, and CVE-2025-54100 represent a meaningful security risk to Windows environments and developer workstations by enabling privilege escalation and arbitrary code execution. CVE-2025-62221 is the most critical, as it is actively exploited in the wild and allows a local attacker to escalate privileges to full SYSTEM control through a flaw in the Windows Cloud Files Mini Filter Driver, significantly increasing the impact of any initial compromise. CVE-2025-64671 |
| url | - |
| publishedAt | 2025-12-24 |
| source | {
"field": "statuspage/public/compliance-update",
"category": "vulnerabilities"
} |
| company | {
"id": "org_d6453fb8c77f0b6a",
"name": "Broadridge",
"domains": [
"trust.broadridge.com",
"broadridge.com"
]
} |
| trust_center | {
"id": "tc_c6ca607ff40394b4",
"name": "Broadridge",
"url": "https://trust.broadridge.com",
"host": "trust.broadridge.com"
} |
| provider | {
"id": "safebase",
"name": "SafeBase"
} |
| links | {
"self": "/v1/security-updates/upd_e1065da04fde0be6",
"company": "/v1/companies/org_d6453fb8c77f0b6a",
"trust_center": "/v1/trust-centers/tc_c6ca607ff40394b4",
"provider": "/v1/providers/safebase"
} |
Get this page with API
Rendered from the bluedoor Trust Centers API. Reproduce it:
GET https://api.bluedoor.sh/trust-centers/v1/security-updates/upd_e1065da04fde0be6JSON