CSO Online

November Patch Tuesday: Zero day Windows kernel flaw in servers, controllers, and PCs

Also of importance are a Kerberos vulnerability in Active Directory, a Visual Studio Copilot extension, and a Microsoft ...
CRN

Microsoft Exec: Massive Outage Prompted Calls For Alternatives To ‘Kernel Mode’

In the wake of the global Windows outage caused by a faulty CrowdStrike update in July, ‘both our customers and ecosystem partners have called on Microsoft to provide additional security capabilities ...
The Hacker News

Microsoft Fixes 63 Security Flaws, Including a Windows Kernel Zero-Day Under Active Attack

The zero-day vulnerability that has been listed as exploited in Tuesday's update is CVE-2025-62215 (CVSS score: 7.0), a ...
The Verge

Microsoft’s new Windows Resiliency Initiative aims to avoid another CrowdStrike incident

Microsoft is working on a new framework to move Windows security vendors out of the kernel for antivirus scanning. Microsoft is working on a new framework to move Windows security vendors out of the ...
SecurityWeek

Microsoft Patches Actively Exploited Windows Kernel Zero-Day

Microsoft Patch Tuesday updates address more than 60 vulnerabilities, including a Windows kernel zero-day exploited in ...
Infosecurity Magazine

Microsoft Fixes Windows Kernel Zero Day in November Patch Tuesday

Microsoft has patched a zero-day vulnerability in the Windows Kernel under active exploitation by threat actors ...
American Hospital Association

H-ISAC TLP White Vulnerability Bulletins: An Elevation of Privilege Zero-Day Vulnerability ...

On November 11, 2025, Microsoft publicly disclosed a high-severity Elevation of Privilege (EoP) zero-day vulnerability found in the Windows Kernel, tracked as CVE-2025-62215 (CVSS Score: 7.0).