Skip to main content

Government officials will never ask you to transfer money or disclose bank log-in details over a phone call.

Call the 24/7 ScamShield Helpline at 1799 if you are unsure if something is a scam.

Cyber Security Agency of Singapore
Monthly Patch

June 2025 Monthly Patch

11 June 2025

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

Microsoft has released security patches to address multiple vulnerabilities in their software and products.

The vulnerabilities that have been classified as Critical in severity are listed in the table below.

For the full list of security patches released by Microsoft, please refer to https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2025-Jun

CRITICAL VULNERABILITIES

Critical Vulnerabilities

CVE Number

CVE Name

Base Score

Reference

CVE-2025-47966

Power Automate Elevation of Privilege Vulnerability

9.8

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47966

CVE-2025-47172

Microsoft SharePoint Server Remote Code Execution Vulnerability

8.8

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47172

CVE-2025-32717

Microsoft Word Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-32717

CVE-2025-47953

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47953

CVE-2025-47167

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47167

CVE-2025-47164

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47164

CVE-2025-47162

Microsoft Office Remote Code Execution Vulnerability

8.4

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-47162

CVE-2025-29828

Windows Schannel Remote Code Execution Vulnerability

8.1

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-29828

CVE-2025-32710

Windows Remote Desktop Services Remote Code Execution Vulnerability

8.1

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-32710

CVE-2025-33070

Windows Netlogon Elevation of Privilege Vulnerability

8.1

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-33070

CVE-2025-33071

Windows KDC Proxy Service (KPSSVC) Remote Code Execution Vulnerability

8.1

https://msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2025-33071

Back to top