Microsoft March 2025 Patch Tuesday addresses 57 security vulnerabilities, including six zero-day flaws

Microsoft's March Patch Tuesday addressed 57 security vulnerabilities, including six actively exploited zero-day flaws. Among these, six were categorized as "critical" and all pertain to remote code execution vulnerabilities.

The breakdown of the vulnerabilities is as follows: 23 elevation of privilege, three security feature bypass, 23 remote code execution, four information disclosure, one denial of service and three spoofing vulnerabilities. Notably, these figures exclude Mariner flaws and 10 Microsoft Edge vulnerabilities that were resolved earlier in the month.

The six actively exploited zero-day vulnerabilities addressed include issues in the Windows Win32 Kernel Subsystem, NTFS, Fast FAT File System Driver and Microsoft Management Console, among others. Furthermore, a publicly disclosed zero-day vulnerability in Microsoft Access was also patched.