Skip to content
BLOG

Patch Tuesday April 2025

Brock Bingham candid headshot
Brock Bingham|April 8, 2025
PatchTuesday grey
PatchTuesday grey
Copied to clipboard
Sections

Welcome back to another glorious Patch Tuesday recap where we highlight Windows lowlights. With the Severance season 2 finale come and gone, I started wondering how many of us would actually sever ourselves just to avoid Patch Tuesday. While you ponder that thought, let’s dig into the Patch Tuesday details.

  • Total exploits patched: 122 

  • Critical patches: 11 

  • Already known or exploited: 1 

Some highlights (or lowlights)

  • CVE-2025-27740: One of several 8.8 rated CVEs this month, CVE-2025-27740 is an elevation of privilege vulnerability that anyone running Active Directory Certificate Services (ADCS) should be concerned with. If exploited, this vulnerability would allow a low-level authenticated user to acquire a certificate from ADCS that could enable System access.

  • CVE-2025-25000: Not to be outdone, CVE-2025-25000 is another 8.8-rated vulnerability targeting Chromium-based Microsoft Edge. This is a ‘type confusion’ exploit that targets vulnerable systems that visit a malicious website, leading to remote code execution. Type confusion exploits are a common attack surface for systems that use dynamic typing, which allows variable types to be determined and updated at runtime. This type of attack is often combined with a phishing attempt to bring users to the malicious site.

  • CVE-2025-26670: A couple more LDAP vulnerabilities have returned this month. If my memory serves, I don’t remember seeing any LDAP CVEs last month, but I had a feeling they’d be back. These attacks are dangerous because they have a network attack vector and don’t require privileges or user interaction — just a specially crafted LDAP message. They can be tricky to execute, though, because bad actors have to win a race condition — but that doesn't help me sleep at night.

Wrapping up

Now that you’ve had some time to reflect on it, would you sever yourself to avoid Patch Tuesday? My main concern is that my innie would just go full-contact IT and push out all the updates to production without testing anything as a form of revolt, leaving me one heck of a mess to clean up if stuff hit the proverbial fan.

Thankfully, with PDQ Connect, you don’t have to sever yourself to avoid Patch Tuesday. Connect makes it easy to automate your Windows and third-party patch deployments, turning Patch Tuesday into just another terrific Taco Tuesday.

Loading...

Brock Bingham candid headshot
Brock Bingham

Born in the '80s and raised by his NES, Brock quickly fell in love with everything tech. With over 15 years of IT experience, Brock now enjoys the life of luxury as a renowned tech blogger and receiver of many Dundie Awards. In his free time, Brock enjoys adventuring with his wife, kids, and dogs, while dreaming of retirement.

Related articles

Illustration of Power(turtle)Shell

How to use variables in remote commands in PowerShell

POWERSHELL

Illustration of computer desk and monitor with PDQ logo

6 best NinjaOne alternatives

GENERAL IT

Hero image illustration of PowerShell logo with rings.

How to send an email using PowerShell and Gmail

POWERSHELL