Ref# ADV2025_46 | Date: Feb 14th 2025

---

Microsoft has published a security advisory to address vulnerabilities affecting the following products on February 11, 2025. It is recommended that you take the necessary precautions to ensure your products are always protected.

• Microsoft 365 Apps – multiple versions and platforms 
• Microsoft Azure – multiple versions and platforms 
• Microsoft Dynamics 365 Sales 
• Microsoft Excel 2016 – version 16.0.5487.1000 
• Microsoft Office – multiple versions and platforms 
• Microsoft SharePoint – multiple versions and platforms 
• Microsoft Visual Studio – multiple versions 
• Windows 10 – multiple versions and platforms 
• Windows 11 – multiple versions and platforms 
• Windows Server – multiple versions and platforms 

Microsoft has indicated that CVE-2025-21418, CVE-2025-21391 and CVE-2023-24932 have been exploited.

For more information on these updates, you can follow this URL:

https://msrc.microsoft.com/update-guide/releaseNote/2025-Feb

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Microsoft Edge Security Advisory

References

• Microsoft Security Update Guide. (2025, February 11). Retrieved from Microsoft. https://msrc.microsoft.com/update-guide/en-us
• Microsoft Edge security advisory. (2025, February 11). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/microsoft-security-advisory-february-2025-monthly-rollup-av25-076