Ref# ADV2025_325 | Date: Sep 10th 2025

---

Microsoft has published a security advisory highlighting vulnerabilities in the following products on September 9th, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated. 

• Azure Bot Service 
• Azure Connected Machine Agent 
• Azure Networking 
• Dynamics 365 
• Microsoft 365 
• Microsoft AutoUpdate for Mac 
• Microsoft Entra ID 
• Microsoft Excel 2016 
• Microsoft HPC 
• Microsoft Office 
• Microsoft OfficePLUS 
• Microsoft PowerPoint 
• Microsoft SQL Server 
• Microsoft SharePoint 
• Microsoft Word 2016 
• Office Online Server 
• Windows 10 
• Windows 11 
• Windows Server 2008 
• Windows Server 2012 
• Windows Server 2016 
• Windows Server 2019 
• Windows Server 2022 
• Windows Server 2025 

For more information on these updates, you can follow these URLs: 

• September 2025 Security Updates 

• Security Update Guide 

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary. 

PDF Download: Microsoft Security Advisory

References 

• Security Update Guide. (September 9th, 2025). Retrieved from Microsoft. https://msrc.microsoft.com/update-guide/en-us  

• Microsoft Security Advisory. (September 9th, 2025). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/microsoft-security-advisory-september-2025-monthly-rollup-av25-582