HomeMicrosoft Patch Tuesday › July 2025

Please link to this page, it changes often. Thank you! The Senserva Team.

Microsoft Patch Tuesday, July 2025

·

Microsoft's July 2025 security release, published July 8, 2025: 37 updates fixing 64 CVEs, ranked by confirmed exploitation, ransomware use, and severity. Provided by Senserva.

Still active now. 3 CVEs from this release are on the Senserva hot list today (as of 2026-07-13), still ranked among the most dangerous vulnerabilities right now by confirmed exploitation, ransomware use, EPSS, and severity. See the current hot list.
37
Updates (KBs)
64
CVEs fixed
5
Actively exploited
3
Ransomware-linked
5
Critical updates

Actively exploited CVEs (CISA KEV)

CVE-2025-53770Microsoft SharePoint Server Remote Code Execution VulnerabilityCVSS 9.8ExploitedRansomware Hot now
CVE-2025-49704Microsoft SharePoint Remote Code Execution VulnerabilityCVSS 8.8ExploitedRansomware Hot now
CVE-2025-33053Internet Shortcut Files Remote Code Execution VulnerabilityCVSS 8.8Exploited
CVE-2025-33073Windows SMB Client Elevation of Privilege VulnerabilityCVSS 8.8Exploited
CVE-2025-49706Microsoft SharePoint Server Spoofing VulnerabilityCVSS 6.5ExploitedRansomware Hot now

Other high-risk CVEs (CVSS 8.8+)

CVE-2025-49701Microsoft SharePoint Remote Code Execution VulnerabilityCVSS 8.8
CVE-2025-33064Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityCVSS 8.8
CVE-2025-33066Windows Routing and Remote Access Service (RRAS) Remote Code Execution VulnerabilityCVSS 8.8
CVE-2024-49000SQL Server Native Client Remote Code Execution VulnerabilityCVSS 8.8
CVE-2025-49739Visual Studio Elevation of Privilege VulnerabilityCVSS 8.8

Products fixed this month

Microsoft Office 2019 for 32-bit editions (12)Microsoft SharePoint Enterprise Server 2016 (11)Microsoft SharePoint Server 2019 (11)Microsoft Office 2019 for 64-bit editions (9)Microsoft SharePoint Server Subscription Edition (8)Microsoft SQL Server 2019 for x64-based Systems (GDR) (8)Windows Server 2019 (7)Windows Server 2019 (Server Core installation) (7)Windows Server 2022 (7)Microsoft 365 Apps for Enterprise for 32-bit Systems (6)
Take this release to your AI

Composed from the July 2025 release data above. Copy it into Claude, ChatGPT, or Copilot. Free, no sign-in.

Reference: Microsoft CVE and vulnerability management, ranked by real-world risk, and the Microsoft patching guide.
Data notice: this page is provided as is, for informational purposes only, without warranty of any kind. Senserva, LLC does not guarantee the accuracy, completeness, or timeliness of third-party data (MSRC, NVD, CISA KEV, EPSS) and accepts no liability for actions taken based on it; verify against the authoritative Microsoft advisory before acting. Built daily with Senserva Trustworthy AI. All use of this data is subject to the Senserva EULA.