{"id":2258,"date":"2025-08-13T08:52:28","date_gmt":"2025-08-13T08:52:28","guid":{"rendered":"https:\/\/ft365.org\/index.php\/2025\/08\/13\/microsoft-fixes-over-100-cves-on-august-patch-tuesday\/"},"modified":"2025-08-13T08:52:28","modified_gmt":"2025-08-13T08:52:28","slug":"microsoft-fixes-over-100-cves-on-august-patch-tuesday","status":"publish","type":"post","link":"http:\/\/ft365.org\/index.php\/2025\/08\/13\/microsoft-fixes-over-100-cves-on-august-patch-tuesday\/","title":{"rendered":"Microsoft Fixes Over 100 CVEs on August Patch Tuesday"},"content":{"rendered":"
\n

\"Photo<\/p>\n<\/div>\n

\n

Microsoft fixed one publicly disclosed zero-day bug in SQL Server yesterday, alongside over 100 additional CVEs, making it one of the biggest Patch Tuesdays so far in 2025.<\/p>\n

This year has been notable for the number of zero-days addressed by the tech giant, although in cases like this one, the term refers to a publicly disclosed rather than actively exploited vulnerability.<\/p>\n

The flaw in question, CVE-2025-53779, is an elevation of privileges (EoP) vulnerability in Windows Kerberos which could allow an authenticated attacker to gain domain admin privileges.<\/p>\n

It relates to delegated Managed Service Accounts (dMSAs), which are designed to allow for migration from traditional service accounts to machine accounts.<\/p>\n

\u201cMicrosoft\u2019s motivation is unimpeachable: the dMSA supports automated rotation of credentials for service accounts, and is specifically designed to prevent credential harvesting using\u00a0Kerberoasting. Indeed,\u00a0CISA has described Kerberoasting\u00a0as one of the most time-efficient ways to elevate privileges and move laterally throughout an organization\u2019s network,\u201d explained Adam Barnett, lead software engineer at\u00a0Rapid7.<\/p>\n

\u201cThe good news here is that successful exploitation of\u00a0CVE-2025-53779\u00a0requires an attacker to have pre-existing control of two attributes of the hopefully well protected dMSA:\u00a0msds-groupMSAMembership, which determines which users may use credentials for the managed service account, and\u00a0msds-ManagedAccountPrecededByLink, which contains a list of users on whose behalf the dMSA can act.\u201d<\/p>\n

Read more on Patch Tuesday: Microsoft Patches a Whopping Seven Zero-Days in March<\/em><\/p>\n

That zero-day is one of only two vulnerabilities classed as \u201cmoderate\u201d this Patch Tuesday. Elsewhere, there are 13 marked \u201ccritical,\u201d\u00a0nine of which are remote code execution (RCE) vulnerabilities, three that are information disclosure bugs\u00a0and one EoP flaw.<\/p>\n

Nine fall under the \u201cexploitation more likely\u201d category of Microsoft\u2019s Exploitability Index.<\/p>\n

\u201cWhat this means is that adversaries could potentially develop reliable exploits for these vulnerabilities, and, further, that these are the kinds of vulnerabilities that adversaries have targeted in the past,\u201d explained Red Canary principal researcher, Brian Donohue.<\/p>\n

He urged sysadmins to focus on patching the following:<\/p>\n