Microsoft has published security advisories for the following products to address vulnerabilities in the following products on October 14, 2025. It is recommended that you take the necessary precautions by ensuring your products are always updated.
- Azure Cache for Redis Enterprise
- Azure Confidential Compute VM
- Microsoft 365 Apps for Enterprise
- Microsoft 365 Copilot’s Business Chat
- Microsoft 365 Word Copilot
- Microsoft Configuration Manager
- Microsoft Defender for Endpoint for Linux
- Microsoft Exchange Server
- Microsoft Exchange Server 2016
- Microsoft Exchange Server 2019
- Microsoft Mesh PC Applications
- Microsoft Mesh for Meta Quest
- Microsoft Office LTSC 2021
- Microsoft Office LTSC 2024
- Microsoft Office for Android
- Microsoft PowerPoint 2016
- Microsoft SharePoint Enterprise Server 2016
- Microsoft SharePoint Server 2019
- Microsoft SharePoint Server Subscription Edition
- Microsoft Visual Studio 2017
- Microsoft Visual Studio 2019
- Microsoft Visual Studio 2022
- Remote Desktop client for Windows Desktop
- Windows App Client for Windows Desktop
For more information on these updates, you can follow these URLs:
October 2025 Security Updates
Microsoft Security Response Center (MSRC) – Security Update Guide
Update 1
On October 23, 2025, Microsoft stated that Proof of Concept (PoC) exploit for critical vulnerability CVE-2025-59287 affecting their WSUS is now available online.
The Guyana National CIRT recommends that users and administrators review this update and apply it where necessary.
References
- Release Notes – Security Update Guide – Microsoft. (n.d.). Retrieved from Microsoft.
https://msrc.microsoft.com/update-guide/releaseNote/2025-Oct