¡¾·ì϶¹«¸æ¡¿Î¢Èí11Ô¶à¸ö°²È«·ì϶

°ä²¼¹¦·ò 2025-11-12

Ò»¡¢·ì϶¸ÅÊö


2025Äê11ÔÂ12ÈÕ£¬GA»Æ½ð¼×¼¯ÍÅVSRC¼à²âµ½Î¢Èí°ä²¼ÁË11Ô°²È«¸üУ¬±¾´Î¸üн¨¸´ÁË63¸ö·ì϶£¬º­¸ÇÌØȨÌáÉý¡¢Ô¶³Ì´úÂëÖ´ÐÓ×¢ÐÅϢй¶µÈ¶àÖÖ·ì϶ÀàÐÍ¡£·ì϶¼¶±ðÉ¢²¼ÈçÏ£º5¸öÑϳÁ¼¶±ð·ì϶£¬58¸ö³ÁÒª¼¶±ð·ì϶£¨·ì϶¼¶±ðƾ¾Ý΢Èí¹Ù·½Êý¾Ý£©¡£


ÆäÖУ¬6¸ö·ì϶±»Î¢ÈíÏóÕ÷Ϊ¡°¸ü¿ÉÄܱ»ÀûÓá±¼°¡°¼ì²âÀûÓÃÇé¾°¡±£¬Åú×¢ÕâЩ·ì϶´æÔڽϸߵÄÀûÓ÷çÏÕ£¬½¨ÒéÓÅÏȽ¨¸´ÒÔ½µµÍDZÔÚ°²È«Íþв¡£


CVE-ID

CVE ±êÌâ

·ì϶¼¶±ð

CVE-2025-59512

Customer Experience Improvement Program (CEIP) Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60705

Windows ¿Í»§¶Ë»º´æÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60719

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62213

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62217

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62215

Windows ÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª


΢Èí11Ô¸üн¨¸´µÄÆëÈ«·ì϶ÁбíÈçÏ£º


CVE-ID

CVE ±êÌâ

·ì϶¼¶±ð

CVE-2025-30398

Nuance PowerScribe 360 ÐÅϢй¶·ì϶

ÑϳÁ

CVE-2025-47179

ÅäÖÃÖÎÀíÆ÷ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59240

Microsoft Excel ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-59499

Microsoft SQL Server ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59504

Azure Monitor ´úÀíÔ¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-59505

Windows Smart Card Reader Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-59506

DirectX ͼÐÎÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59507

Windows ÓïÒôÔËÐÐʱÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59508

Windows Speech Recognition Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-59509

Windows Speech Recognition Information Disclosure Vulnerability

³ÁÒª

CVE-2025-59510

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) »Ø¾ø·þÎñ·ì϶

³ÁÒª

CVE-2025-59511

Windows WLAN ·þÎñÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59512

Customer Experience Improvement Program (CEIP) Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-59513

Windows Bluetooth RFCOM Protocol Driver Information Disclosure Vulnerability

³ÁÒª

CVE-2025-59514

Microsoft Á÷ʽ´¦ÖôúÀíÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-59515

Windows Broadcast DVR User Service Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60703

Windows Ô¶³Ì×ÀÃæ·þÎñÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60704

Windows Kerberos ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60705

Windows ¿Í»§¶Ë»º´æÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60706

Windows Hyper-V ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-60707

Multimedia Class Scheduler Service (MMCSS) Driver Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60708

Storvsp.sys Driver Denial of Service Vulnerability

³ÁÒª

CVE-2025-60709

Windows ͨÓÃÈÕÖ¾ÎļþϵͳÇý¶¯·¨Ê½ÌáÉýȨÏÞ·ì϶

³ÁÒª

CVE-2025-60710

Host Process for Windows Tasks Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60713

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60714

Windows OLE Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-60715

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-60716

DirectX ͼÐÎÄÚºËÌØȨÌáÉý·ì϶

ÑϳÁ

CVE-2025-60717

Windows Broadcast DVR User Service Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60718

Windows Administrator Protection Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60719

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60720

Windows ´«ÊäÇý¶¯·¨Ê½½Ó¿Ú (TDI) ת»»Çý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-60721

Windows Administrator Protection Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60722

Microsoft OneDrive for Android Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-60723

DirectX ͼÐÎÄں˻ؾø·þÎñ·ì϶

³ÁÒª

CVE-2025-60724

GDI Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-60726

Microsoft Excel ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-60727

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-60728

Microsoft Excel ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-62199

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-62200

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62201

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62202

Microsoft Excel ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-62203

Microsoft Excel Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62204

Microsoft SharePoint Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62205

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62206

Microsoft Dynamics 365£¨±¾µØ£©ÐÅϢй¶·ì϶

³ÁÒª

CVE-2025-62208

Windows License Manager Information Disclosure Vulnerability

³ÁÒª

CVE-2025-62209

Windows License Manager Information Disclosure Vulnerability

³ÁÒª

CVE-2025-62210

Dynamics 365 Field Service£¨ÔÚÏߣ©ºýŪ·ì϶

³ÁÒª

CVE-2025-62211

Dynamics 365 Field Service£¨ÔÚÏߣ©ºýŪ·ì϶

³ÁÒª

CVE-2025-62213

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62214

Visual Studio Ô¶³ÌÖ´ÐдúÂë·ì϶

ÑϳÁ

CVE-2025-62215

Windows ÄÚºËÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62216

Microsoft Office Ô¶³ÌÖ´ÐдúÂë·ì϶

³ÁÒª

CVE-2025-62217

WinSock µÄ Windows ¸¨ÖúÖ°ÄÜÇý¶¯·¨Ê½ÌØȨÌáÉý·ì϶

³ÁÒª

CVE-2025-62218

Microsoft Wireless Provisioning System Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-62219

Microsoft Wireless Provisioning System Elevation of Privilege Vulnerability

³ÁÒª

CVE-2025-62220

Windows Subsystem for Linux GUI Remote Code Execution Vulnerability

³ÁÒª

CVE-2025-62222

ÖÇÄÜÌåAI Óë Visual Studio Code Ô¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-62449

Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability

³ÁÒª

CVE-2025-62452

Windows ·ÓɺÍÔ¶³Ì½Ó¼û·þÎñ (RRAS) Ô¶³Ì´úÂëÖ´Ðзì϶

³ÁÒª

CVE-2025-62453

GitHub Copilot and Visual Studio Code Security Feature Bypass Vulnerability

³ÁÒª


¶þ¡¢Ó°ÏìÁìÓò


ÊÜÓ°ÏìµÄ²úÆ·/Ö°ÄÜ/·þÎñ/×é¼þÔ̺¬£º

Nuance PowerScribe

Microsoft Configuration Manager

Microsoft Office Excel

SQL Server

Azure Monitor Agent

Windows Smart Card

Windows DirectX

Windows Speech

Windows Routing and Remote Access Service (RRAS)

Windows WLAN Service

Customer Experience Improvement Program (CEIP)

Windows Bluetooth RFCOM Protocol Driver

Microsoft Streaming Service

Windows Broadcast DVR User Service

Windows Remote Desktop

Windows Kerberos

Windows Client-Side Caching (CSC) Service

Role: Windows Hyper-V

Multimedia Class Scheduler Service (MMCSS)

Storvsp.sys Driver

Windows Common Log File System Driver

Host Process for Windows Tasks

Windows OLE

Windows Administrator Protection

Windows Ancillary Function Driver for WinSock

Windows TDX.sys

OneDrive for Android

Microsoft Graphics Component

Microsoft Office

Microsoft Office SharePoint

Microsoft Office Word

Microsoft Dynamics 365 (on-premises)

Windows License Manager

Dynamics 365 Field Service (online)

Visual Studio

Windows Kernel

Microsoft Wireless Provisioning System

Windows Subsystem for Linux GUI

Visual Studio Code CoPilot Chat Extension

GitHub Copilot and Visual Studio Code


Èý¡¢°²È«´ëÊ©


3.1 Éý¼¶°æ±¾


Ŀǰ΢ÈíÒÑ°ä²¼Óйذ²È«¸üУ¬½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ì½¨¸´¡£


£¨Ò»£©Windows Update×Ô¶¯¸üÐÂ


Microsoft UpdateĬÈÏÆôÓ㬵±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ£¬½«»á×Ô¶¯ÏÂÔظüв¢±ÉÈËÒ»´ÎÆô¶¯Ê±×°Öá£Ò²¿ÉÑ¡Ôñͨ¹ýÒÔϲ½ÖèÊÖ¶¯½øÐиüУº


1¡¢µã»÷¡°ÆðÍ·²Ëµ¥¡±»ò°´Windows¿ì½Ý¼ü£¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкͰ²È«¡±£¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý½ÚÔìÃæ°å½øÈë¡°Windows¸üС±£¬¾ßÌå²½ÖèΪ¡°½ÚÔìÃæ°å¡±->¡°ÏµÍ³ºÍ°²È«¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°²é³­¸üС±£¬ÆÚ´ýϵͳ×Ô¶¯²é³­²¢ÏÂÔØ¿ÉÓøüС£

4¡¢¸üÐÂʵÏÖºó³ÁÆôÍÆËã»ú£¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°²é¿´¸üк¹Çà¼Í¼¡±²é¿´ÊÇ·ñ³É¹¦×°ÖÃÁ˸üС£¶ÔÓÚûÓгɹ¦×°ÖõĸüУ¬Äܹ»µã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÃèÊöÁ´½Ó£¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡±£¬¶øºóÔÚÐÂÁ´½Óµ±Ñ¡ÔñºÏÓÃÓÚÖ¸±êϵͳµÄ²¹¶¡½øÐÐÏÂÔز¢×°Öá£


£¨¶þ£©ÊÖ¶¯×°ÖøüÐÂ


Microsoft¹Ù·½ÏÂÔØÏàÓ¦²¹¶¡½øÐиüС£

2025Äê11Ô°²È«¸üÐÂÏÂÔØÁ´½Ó£º

https://msrc.microsoft.com/update-guide/releaseNote/2025-Nov


²¹¶¡ÏÂÔØʾÀý£¨²Î¿¼£©£º


1.´ò¿ªÉÏÊöÏÂÔØÁ´½Ó£¬µã»÷·ì϶ÁбíÖÐÒª½¨¸´µÄCVEÁ´½Ó¡£


ͼƬ1.png

Àý1£ºÎ¢Èí·ì϶ÁÐ±í£¨Ê¾Àý£©


2.ÔÚ΢Èí²¼¸æÒ³Ãæµ×²¿×ó²à¡¾²úÆ·¡¿ÁÐÑ¡ÔñÏàÓ¦µÄϵͳÀàÐÍ£¬µã»÷ÓҲࡾÏÂÔØ¡¿Áдò¿ª²¹¶¡ÏÂÔØÁ´½Ó¡£


ͼƬ2.png

Àý2£ºCVE-2022-21989²¹¶¡ÏÂÔØʾÀý


3.µã»÷¡¾°²È«¸üС¿£¬´ò¿ª²¹¶¡ÏÂÔØÒ³Ã棬ÏÂÔØÏàÓ¦²¹¶¡²¢½øÐÐ×°Öá£


ͼƬ3.png

Àý3£º²¹¶¡ÏÂÔؽçÃæ


4.×°ÖÃʵÏÖºó³ÁÆôÍÆËã»ú¡£


3.2 Ò»Ê±´ëÊ©


ÔÝÎÞ¡£


3.3 ͨÓý¨Òé


? ¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¬Ï÷¼õϵͳ·ì϶£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£

¼ÓǿϵͳºÍÍøÂçµÄ½Ó¼û½ÚÔ죬Åú¸Ä·À»ðǽսÊõ£¬¹Ø¹Ø·Ç±ØÒªµÄÀûÓö˿ڻò·þÎñ£¬Ï÷¼õ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Â¶³öµ½¹«Íø£¬Ï÷¼õ¹¥»÷Ãæ¡£

ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫ»úÄÜ¡£

¼ÓǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬ÆôÓöà³É·ÖÈÏÖ¤»úÔìºÍ×îÓ×ȨÏÞ×¼Ôò£¬Óû§ºÍÈí¼þȨÏÞӦά³ÖÔÚ×îµÍÏ޶ȡ£

ÆôÓÃÇ¿ÃÜÂëÕ½Êõ²¢ÉèÖÃΪ¶¨ÆÚÅú¸Ä¡£


3.4 ²Î¿¼Á´½Ó


https://msrc.microsoft.com/update-guide/releaseNote/2025-Nov