学校首页
首页 网络安全 威胁情报 正文

【漏洞通报】CNNVD关于微软多个安全漏洞的通报

时间:2025年08月20日 09:06  来源: CNNVD   点击数:

近日,微软官方发布了多个安全漏洞的公告,其中微软产品本身漏洞107个,影响到微软产品的其他厂商漏洞0个。微软Microsoft Graphics Component、Microsoft Remote Desktop Client、Microsoft Windows GDI+、Microsoft SQL Server等多个产品和系统受漏洞影响。目前,微软官方已经发布了漏洞修复补丁,建议用户及时确认是否受到漏洞影响,尽快采取修补措施。

一、 漏洞介绍

2025年8月12日,微软发布了2025年8月份安全更新,共107个漏洞的补丁程序,CNNVD对这些漏洞进行了收录。本次更新主要涵盖了Microsoft Windows 和 Windows 组件、Microsoft Windows Remote Desktop Services、Microsoft Windows GDI+、Microsoft Web Deploy、Microsoft SharePoint、Microsoft Windows DirectX等。CNNVD对其危害等级进行了评价,其中超危漏洞3个,高危漏洞80个,中危漏洞24个。微软多个产品和系统版本受漏洞影响,具体影响范围可访问微软官方网站查询:

https://portal.msrc.microsoft.com/zh-cn/security-guidance

二、漏洞详情

此次更新共107个漏洞的补丁程序,包括106个新增漏洞的补丁程序和1个更新漏洞的补丁程序。

此次更新共包括106个新增漏洞的补丁程序,其中超危漏洞3个,高危漏洞79个,中危漏洞24个。

 

序号

漏洞名称

CNNVD编号

CVE编号

危害等级

官方链接

1

Microsoft Graphics Component 安全漏洞

CNNVD-202508-1184

CVE-2025-50165

超危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50165

2

Microsoft Remote Desktop Client 安全漏洞

CNNVD-202508-1191

CVE-2025-50171

超危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50171

3

Microsoft Windows GDI+ 安全漏洞

CNNVD-202508-1241

CVE-2025-53766

超危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53766

4

Microsoft SQL Server 访问控制错误漏洞

CNNVD-202508-1097

CVE-2025-24999

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24999

5

Microsoft Exchange Server 信息泄露漏洞

CNNVD-202508-1067

CVE-2025-33051

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-33051

6

Microsoft SQL Server SQL注入漏洞

CNNVD-202508-1162

CVE-2025-47954

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-47954

7

Microsoft Hyper-V 安全漏洞

CNNVD-202508-1168

CVE-2025-48807

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-48807

8

Microsoft Azure 访问控制错误漏洞

CNNVD-202508-1176

CVE-2025-49707

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49707

9

Microsoft SharePoint 代码问题漏洞

CNNVD-202508-1179

CVE-2025-49712

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49712

10

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1140

CVE-2025-49757

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49757

11

Microsoft SQL Server 安全漏洞

CNNVD-202508-1051

CVE-2025-49758

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49758

12

Microsoft SQL Server SQL注入漏洞

CNNVD-202508-1146

CVE-2025-49759

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49759

13

Microsoft Windows Kernel 资源管理错误漏洞

CNNVD-202508-1150

CVE-2025-49761

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49761

14

Microsoft Windows Ancillary Function Driver for WinSock 竞争条件问题漏洞

CNNVD-202508-1155

CVE-2025-49762

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49762

15

Microsoft Desktop Windows Manager 资源管理错误漏洞

CNNVD-202508-1160

CVE-2025-50153

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50153

16

Microsoft Windows File Explorer 信息泄露漏洞

CNNVD-202508-1163

CVE-2025-50154

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50154

17

Microsoft Windows Push Notifications 安全漏洞

CNNVD-202508-1185

CVE-2025-50155

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50155

18

Microsoft Windows NTFS 安全漏洞

CNNVD-202508-1164

CVE-2025-50158

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50158

19

Microsoft Remote Access Point-to-Point Protocol (PPP) EAP-TLS 资源管理错误漏洞

CNNVD-202508-1167

CVE-2025-50159

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50159

20

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1172

CVE-2025-50160

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50160

21

Microsoft Win32K 安全漏洞

CNNVD-202508-1175

CVE-2025-50161

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50161

22

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1177

CVE-2025-50162

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50162

23

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1180

CVE-2025-50163

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50163

24

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1182

CVE-2025-50164

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50164

25

Microsoft Hyper-V 资源管理错误漏洞

CNNVD-202508-1187

CVE-2025-50167

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50167

26

Microsoft Win32k 安全漏洞

CNNVD-202508-1186

CVE-2025-50168

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50168

27

Microsoft Windows SMB Server 资源管理错误漏洞

CNNVD-202508-1189

CVE-2025-50169

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50169

28

Microsoft Windows Cloud Files Mini Filter Driver 安全漏洞

CNNVD-202508-1190

CVE-2025-50170

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50170

29

Microsoft Windows Installer 安全漏洞

CNNVD-202508-1193

CVE-2025-50173

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50173

30

Microsoft Graphics Kernel 安全漏洞

CNNVD-202508-1194

CVE-2025-50176

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50176

31

Microsoft Message Queuing 资源管理错误漏洞

CNNVD-202508-1195

CVE-2025-50177

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50177

32

Microsoft Windows Media 安全漏洞

CNNVD-202508-1196

CVE-2025-53131

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53131

33

Microsoft Win32k 资源管理错误漏洞

CNNVD-202508-1197

CVE-2025-53132

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53132

34

Microsoft Windows PrintWorkflowUserSvc 资源管理错误漏洞

CNNVD-202508-1198

CVE-2025-53133

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53133

35

Microsoft Windows Ancillary Function Driver for WinSock 安全漏洞

CNNVD-202508-1199

CVE-2025-53134

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53134

36

Microsoft Windows DirectX 竞争条件问题漏洞

CNNVD-202508-1200

CVE-2025-53135

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53135

37

Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞

CNNVD-202508-1202

CVE-2025-53137

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53137

38

Microsoft Kernel Transaction Manager 资源管理错误漏洞

CNNVD-202508-1204

CVE-2025-53140

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53140

39

Microsoft Windows Ancillary Function Driver for WinSock 代码问题漏洞

CNNVD-202508-1205

CVE-2025-53141

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53141

40

Microsoft Brokering File System 资源管理错误漏洞

CNNVD-202508-1206

CVE-2025-53142

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53142

41

Microsoft Message Queuing 安全漏洞

CNNVD-202508-1207

CVE-2025-53143

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53143

42

Microsoft Message Queuing 安全漏洞

CNNVD-202508-1208

CVE-2025-53144

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53144

43

Microsoft Message Queuing 安全漏洞

CNNVD-202508-1209

CVE-2025-53145

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53145

44

Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞

CNNVD-202508-1210

CVE-2025-53147

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53147

45

Microsoft Kernel Streaming WOW Thunk Service Driver 安全漏洞

CNNVD-202508-1212

CVE-2025-53149

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53149

46

Microsoft Windows Kernel 资源管理错误漏洞

CNNVD-202508-1213

CVE-2025-53151

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53151

47

Microsoft Desktop Windows Manager 资源管理错误漏洞

CNNVD-202508-1214

CVE-2025-53152

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53152

48

Microsoft Windows Ancillary Function Driver for WinSock 代码问题漏洞

CNNVD-202508-1216

CVE-2025-53154

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53154

49

Microsoft Hyper-V 安全漏洞

CNNVD-202508-1217

CVE-2025-53155

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53155

50

Microsoft Windows Ancillary Function Driver for WinSock 资源管理错误漏洞

CNNVD-202508-1220

CVE-2025-53718

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53718

51

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1222

CVE-2025-53720

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53720

52

Microsoft Windows 资源管理错误漏洞

CNNVD-202508-1223

CVE-2025-53721

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53721

53

Microsoft Windows Remote Desktop Services 资源管理错误漏洞

CNNVD-202508-1224

CVE-2025-53722

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53722

54

Microsoft Hyper-V 安全漏洞

CNNVD-202508-1225

CVE-2025-53723

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53723

55

Microsoft Windows Push Notifications 安全漏洞

CNNVD-202508-1226

CVE-2025-53724

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53724

56

Microsoft Windows Push Notifications 安全漏洞

CNNVD-202508-1227

CVE-2025-53725

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53725

57

Microsoft Windows Push Notifications 安全漏洞

CNNVD-202508-1228

CVE-2025-53726

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53726

58

Microsoft SQL Server SQL注入漏洞

CNNVD-202508-1057

CVE-2025-53727

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53727

59

Microsoft Office Visio 资源管理错误漏洞

CNNVD-202508-1072

CVE-2025-53730

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53730

60

Microsoft Office 资源管理错误漏洞

CNNVD-202508-1230

CVE-2025-53731

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53731

61

Microsoft Office 安全漏洞

CNNVD-202508-1231

CVE-2025-53732

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53732

62

Microsoft Word 安全漏洞

CNNVD-202508-1232

CVE-2025-53733

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53733

63

Microsoft Office Visio 资源管理错误漏洞

CNNVD-202508-1233

CVE-2025-53734

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53734

64

Microsoft Excel 资源管理错误漏洞

CNNVD-202508-1234

CVE-2025-53735

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53735

65

Microsoft Excel 安全漏洞

CNNVD-202508-1236

CVE-2025-53737

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53737

66

Microsoft Word 资源管理错误漏洞

CNNVD-202508-1237

CVE-2025-53738

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53738

67

Microsoft Excel 安全漏洞

CNNVD-202508-1238

CVE-2025-53739

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53739

68

Microsoft Office 资源管理错误漏洞

CNNVD-202508-1239

CVE-2025-53740

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53740

69

Microsoft Excel 安全漏洞

CNNVD-202508-1074

CVE-2025-53741

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53741

70

Microsoft Excel 安全漏洞

CNNVD-202508-1080

CVE-2025-53759

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53759

71

Microsoft SharePoint 代码问题漏洞

CNNVD-202508-1086

CVE-2025-53760

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53760

72

Microsoft Office PowerPoint 资源管理错误漏洞

CNNVD-202508-1094

CVE-2025-53761

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53761

73

Microsoft Web Deploy 代码问题漏洞

CNNVD-202508-1101

CVE-2025-53772

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53772

74

Microsoft GitHub Copilot and Visual Studio 命令注入漏洞

CNNVD-202508-1107

CVE-2025-53773

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53773

75

Microsoft NTLM 授权问题漏洞

CNNVD-202508-1243

CVE-2025-53778

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53778

76

Microsoft Windows Kerberos 安全漏洞

CNNVD-202508-1244

CVE-2025-53779

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53779

77

Microsoft Azure 信息泄露漏洞

CNNVD-202508-1111

CVE-2025-53781

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53781

78

Microsoft Teams 安全漏洞

CNNVD-202508-1245

CVE-2025-53783

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53783

79

Microsoft Word 资源管理错误漏洞

CNNVD-202508-1246

CVE-2025-53784

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53784

80

Microsoft Windows Subsystem for Linux 安全漏洞

CNNVD-202508-1247

CVE-2025-53788

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53788

81

Microsoft Windows 访问控制错误漏洞

CNNVD-202508-1248

CVE-2025-53789

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53789

82

Microsoft Azure Stack 路径遍历漏洞

CNNVD-202508-1249

CVE-2025-53793

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53793

83

Microsoft Exchange Server 输入验证错误漏洞

CNNVD-202508-1118

CVE-2025-25005

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25005

84

Microsoft Exchange Server 安全漏洞

CNNVD-202508-1124

CVE-2025-25006

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25006

85

Microsoft Exchange Server 安全漏洞

CNNVD-202508-1129

CVE-2025-25007

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-25007

86

Microsoft Edge 安全漏洞

CNNVD-202508-1178

CVE-2025-49736

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49736

87

Microsoft Graphics Component 资源管理错误漏洞

CNNVD-202508-1135

CVE-2025-49743

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49743

88

Microsoft Dynamics 365 跨站脚本漏洞

CNNVD-202508-1046

CVE-2025-49745

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49745

89

Microsoft Hyper-V 安全漏洞

CNNVD-202508-1042

CVE-2025-49751

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49751

90

Microsoft Edge 安全漏洞

CNNVD-202508-1181

CVE-2025-49755

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-49755

91

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1165

CVE-2025-50156

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50156

92

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1188

CVE-2025-50157

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50157

93

Microsoft Windows 输入验证错误漏洞

CNNVD-202508-1183

CVE-2025-50166

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50166

94

Microsoft Windows DirectX 安全漏洞

CNNVD-202508-1192

CVE-2025-50172

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50172

95

Microsoft Windows NT OS Kernel 信息泄露漏洞

CNNVD-202508-1201

CVE-2025-53136

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53136

96

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1203

CVE-2025-53138

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53138

97

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1211

CVE-2025-53148

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53148

98

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1215

CVE-2025-53153

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53153

99

Microsoft Windows Storage Port Driver 信息泄露漏洞

CNNVD-202508-1218

CVE-2025-53156

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53156

100

Microsoft Windows Local Security Authority Subsystem Service 代码问题漏洞

CNNVD-202508-1219

CVE-2025-53716

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53716

101

Microsoft Windows Routing and Remote Access Service 安全漏洞

CNNVD-202508-1221

CVE-2025-53719

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53719

102

Microsoft Dynamics 365 信息泄露漏洞

CNNVD-202508-1229

CVE-2025-53728

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53728

103

Microsoft Word 安全漏洞

CNNVD-202508-1235

CVE-2025-53736

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53736

104

Microsoft Azure Stack 安全漏洞

CNNVD-202508-1240

CVE-2025-53765

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53765

105

Microsoft Windows Security Center 安全漏洞

CNNVD-202508-1242

CVE-2025-53769

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53769

106

Microsoft Azure 安全漏洞

CNNVD-202508-1062

CVE-2025-53729

中危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53729

  此次更新共包括1个更新漏洞的补丁程序,其中高危漏洞1个。

 

序号

漏洞名称

CNNVD编号

CVE编号

危害等级

官方链接

1

Microsoft Exchange Server 授权问题漏洞

CNNVD-202508-605

CVE-2025-53786

高危

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-53786

三、修复建议

目前,微软官方已经发布补丁修复了上述漏洞,建议用户及时确认漏洞影响,尽快采取修补措施。微软官方补丁下载地址:

https://msrc.microsoft.com/update-guide/en-us

  CNNVD将继续跟踪上述漏洞的相关情况,及时发布相关信息。如有需要,可与CNNVD联系。联系方式: cnnvd@itsec.gov.cn

 

上一条:CNNVD关于Fortinet FortiWeb 安全漏洞的通报

下一条:Oracle发布2025年7月的安全公告

友情链接:

  • 网络服务电话:0451-87501278

  • 数据服务(一卡通服务、智慧校园服务)电话:0451-87501256

  • 个人信息投诉举报电话:0451-87501278

  • 地址:清华楼119室

手机版

Copyright © 2023 黑龙江职业学院现代教育技术中心 版权所有