Fortra's November 2025 Patch Priority Index (PPI) brings together important vulnerabilities for Microsoft and Google.
Up first on the list are patches for Chromium and Microsoft Edge (Chromium-based) that resolve five issues, including inappropriate implementation and out-of-bounds write vulnerabilities.
Next on the list are patches for Microsoft Office, Word, and Excel. These patches resolve 11 issues including remote code execution and information disclosure vulnerabilities.
Up next are patches that affect components of the core Windows operating system. These patches resolve over 35 vulnerabilities, including elevation of privilege, spoofing, denial-of-service, information disclosure, and remote code execution vulnerabilities.
These vulnerabilities affect the Kernel, RRAS, Broadcast DVR, DirectX, Speech Recognition, Kerberos, CLFS, and various other components.
Lastly, administrators should focus on server-side patches for SharePoint, SQL Server, Dynamics, and Hyper-V. These patches resolve four issues, including remote code execution, elevation of privilege, and information disclosure vulnerabilities.
| BULLETIN | CVE |
|---|---|
| Microsoft Edge (Chromium-based) and Chromium | CVE-2025-12725, CVE-2025-12726, CVE-2025-12727, CVE-2025-12728, CVE-2025-12729 |
| Microsoft Office Excel | CVE-2025-60726, CVE-2025-60728, CVE-2025-59240, CVE-2025-62202, CVE-2025-60727, CVE-2025-62200, CVE-2025-62201, CVE-2025-62203 |
| Microsoft Office | CVE-2025-62216, CVE-2025-62199, CVE-2025-62205 |
| Windows | CVE-2025-62218, CVE-2025-62219, CVE-2025-60707, CVE-2025-59515, CVE-2025-60717, CVE-2025-60719, CVE-2025-62213, CVE-2025-62217, CVE-2025-59514, CVE-2025-60723, CVE-2025-59506, CVE-2025-60716, CVE-2025-59504, CVE-2025-60724, CVE-2025-60708, CVE-2025-60705, CVE-2025-59508, CVE-2025-59509, CVE-2025-59507, CVE-2025-60703, CVE-2025-47179, CVE-2025-62220, CVE-2025-60714, CVE-2025-59513, CVE-2025-60718, CVE-2025-60721, CVE-2025-60710, CVE-2025-59510, CVE-2025-60713, CVE-2025-62452, CVE-2025-60715, CVE-2025-60704, CVE-2025-60720, CVE-2025-59512, CVE-2025-59511, CVE-2025-62215, CVE-2025-59505, CVE-2025-60709, CVE-2025-62208, CVE-2025-62209 |
| Microsoft Office SharePoint | CVE-2025-62204 |
| SQL Server | CVE-2025-59499 |
| Microsoft Dynamics 365 (on-premises) | CVE-2025-62206 |
| Role: Windows Hyper-V | CVE-2025-60706 |
Cybersecurity for Your Industry
Your industry is unique. Your cybersecurity stack should be, too. Fortra® offers cybersecurity solutions to meet the challenges and compliance requirements of industries around the world.
