Threat Advisories:

Microsoft’s July 2025 Patch Tuesday Fixes Active Zero-Day Exploits

Red | Vulnerability Report
Download PDF

Microsoft’s July 2025 Patch Tuesday includes fixes for 150 vulnerabilities, with several requiring urgent attention. Notably, CVE-2025-6554, a type confusion bug in the V8 JavaScript engine used by Google Chrome, was actively exploited prior to the patch release. Another high-impact zero-day vulnerability, CVE-2025-53770, is also being actively exploited in the wild, targeting on-premises Microsoft SharePoint Servers. Given the severity and ongoing exploitation of these flaws, users are strongly advised to apply the latest patches immediately to mitigate active threats and enhance system security.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox

Cyber Horizons 2025

What Last Year’s Attacks Reveal About Today’s Risks

Watch the Webinar on-demand and get a FREE copy of our Cyber Horizons 2025 report.

Our Speakers
Speaker 1

Prateek Bhajanka Global Field CISO & Former Gartner Analyst Hive Pro Inc.

Speaker 2

Ankit Mani Manager Threat Intel HiveForce Labs

Speaker 3

Sreevani Tonipe Senior Threat Researcher HiveForce Labs