The Indian Computer Emergency Response Team (CERT-In) has recently issued a critical advisory highlighting multiple vulnerabilities across various Microsoft products, including Windows 10, Windows 11, and Microsoft Office. These security flaws pose significant risks, potentially allowing attackers to execute remote code, elevate privileges, bypass security restrictions, and access sensitive information.
Overview of the Vulnerabilities
CERT-In's advisory details several vulnerabilities affecting a broad spectrum of Microsoft products:
- Microsoft Windows: Vulnerabilities such as CVE-2025-29824 in the Windows Common Log File System (CLFS) Driver could enable attackers to gain SYSTEM-level privileges, leading to complete system compromise. (cert-in.org.in)
- Microsoft Office: Critical remote code execution vulnerabilities, including CVE-2025-27745 and CVE-2025-27748, have been identified. Exploitation could occur if a user opens a specially crafted Office document, potentially granting attackers full control over the system. (crowdstrike.com)
- Microsoft Azure and Developer Tools: Vulnerabilities in these platforms could allow attackers to bypass security restrictions and perform unauthorized actions.
Exploitation of these vulnerabilities can lead to severe consequences, including:
- Remote Code Execution: Attackers can run arbitrary code on affected systems, potentially installing malicious programs or altering data.
- Privilege Escalation: Gaining higher-level access could allow attackers to take full control of compromised systems.
- Information Disclosure: Unauthorized access to sensitive information could result in data breaches.
- Denial of Service (DoS): Exploitation could render systems unresponsive, disrupting operations.
To mitigate these risks, CERT-In recommends the following actions:
- Apply Security Updates: Ensure all Microsoft products are updated with the latest security patches. Microsoft has released updates addressing these vulnerabilities, and prompt application is crucial. (cert-in.org.in)
- Restrict Access: Limit access to affected services, such as Remote Desktop Protocol (RDP) and Lightweight Directory Access Protocol (LDAP), to trusted sources only. (cert.europa.eu)
- Monitor Systems: Regularly review system logs for unusual activity that may indicate exploitation attempts.
- Educate Users: Train users to recognize phishing attempts and avoid opening suspicious emails or documents.
The vulnerabilities identified by CERT-In underscore the importance of maintaining up-to-date systems and implementing robust security practices. Organizations and individuals using Microsoft products should act promptly to apply the recommended updates and safeguards to protect against potential cyber threats.
Source: News18 Windows 10, 11 And Microsoft Office Users Face Major Security Risks, Indian Govt Raises Alert
