2025年3月12日(北京时间),微软发布了2025 年 3月安全更新,共发布了58个CVE的补丁程序,同比上月减少了9个。
在漏洞安全等级方面,存在6个标记等级为“Critical”的漏洞,51个漏洞被标记为“Important/High”等级的漏洞;在漏洞类型方面,主要有24个远程代码执行漏洞,22个权限提升漏洞以及4个信息泄露漏洞。
漏洞分析
2025年漏洞数量趋势
图 1 2025年微软补丁漏洞修复情况
总体上来看,微软本月发布的补丁数量为58个,有6个 Critical 漏洞补丁。
千里目安全技术中心在综合考虑往年微软公布漏洞数量的数据统计和今年的特殊情况,初步估计微软在今年四月份公布的漏洞数将比今年三月份多。漏洞数量将会维持在80个左右。
历史微软补丁日3月漏洞对比
2022-2025年,3月份的漏洞数趋势如下图:
图 2 微软近年3月Windows补丁漏洞数量对比
2022-2025年,3月份的漏洞危险等级趋势和数量如下图:
图 3 微软近年3月漏洞危险等级对比
2022-2025年,3月份的漏洞各个类型数量对比如下图:
图 4 微软近年3月漏洞类型对比
数据来源:根据微软官方安全更新通告中的数据统计
从漏洞数量来看,今年相较去年减少。微软在2025年3月份爆发的漏洞相较于去年减少。本月出现了58个漏洞补丁,并且有6个 Critical 类型的漏洞补丁。
从漏洞的危险等级来看,相较去年“Critical”等级的漏洞数量增多,“Important/
High”等级的漏洞数量减少。本月出现了6个“Critical”等级的漏洞,相较去年增加了200%;本月出现了51个“Important/High”等级的漏洞,相较去年减少了约16%。
从漏洞类型来看,RCE类型的漏洞数量增多,DoS类型的漏洞数量减少,EoP类型的漏洞数量减少,需要引起高度重视,尤其是RCE漏洞在配合社工手段的前提下,甚至可以直接接管整个局域网并进行进一步扩展攻击。
重要漏洞分析
漏洞分析
Windows NTFS 远程执行代码漏洞 CVE-2025-24993
NTFS是微软开发的现代文件系统,自1993年随Windows NT推出,支持大文件(高达8PB)、日志记录、权限控制及加密,具备高可靠性与容错能力,是Windows核心存储方案。
其中存在远程执行代码漏洞,攻击者可以利用该漏洞在目标系统执行任意代码。该漏洞存在在野利用,经过评估,危害比较大,我们建议用户及时更新微软安全补丁。
Windows NTFS 信息泄露漏洞 CVE-2025-24991 CVE-2025-24984
NTFS是微软开发的现代文件系统,自1993年随Windows NT推出,支持大文件(高达8PB)、日志记录、权限控制及加密,具备高可靠性与容错能力,是Windows核心存储方案。
其中存在信息泄露漏洞,攻击者可以利用该漏洞在目标系统获取未授权的信息。该漏洞经过评估,危害比较大,我们建议用户及时更新微软安全补丁。
Windows FAST FAT 文件系统驱动程序远程代码执行漏洞 CVE-2025-24985
FAT文件系统是微软开发的文件配置表系统,支持FAT12/16/32格式,用于DOS、早期Windows及嵌入式设备。其核心为文件分配表(FAT),通过簇管理存储空间,具备跨平台兼容性,适用于SD卡、U盘等移动存储。
其中存在远程执行代码漏洞,攻击者可以利用该漏洞在目标系统执行任意代码。该漏洞存在在野利用,经过评估,危害比较大,我们建议用户及时更新微软安全补丁。
Microsoft 管理控制台安全功能绕过漏洞 CVE-2025-26633
Microsoft 管理控制台(MMC)是 Windows 系统管理工具的统一平台,通过集成插件(如设备管理器、组策略等)管理硬件、软件及网络组件。用户可通过运行 mmc 命令或打开 .msc 文件启动,支持自定义控制台配置。
其中存在安全功能绕过漏洞,攻击者可以利用该漏洞在绕过目标系统上的安全功能,做出规定之外的行为。漏洞存在在野利用,经过评估,危害比较大,我们建议用户及时更新微软安全补丁。
Windows Win32 内核子系统特权提升漏洞 CVE-2025-24983
Windows Win32 内核子系统是操作系统的核心组件,包含内核模式驱动 win32k.sys(处理窗口管理、图形渲染) 和用户模式组件 csrss.exe(进程管理),通过 user32.dll/gdi32.dll 提供 GUI 支持,负责系统图形界
面、输入响应及应用程序交互。
其中存在特权提升漏洞,攻击者可以利用该漏洞在目标系统上获取更高的权限。该漏洞存在在野利用,经过评估,危害比较大,我们建议用户及时更新微软安全补丁。
影响范围
漏洞名称、CVE编号 | 受影响版本 |
Windows NTFS 远程执行代码漏洞 CVE-2025-24993 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 21H2 for 32-bit Systems Windows 10 Version 21H2 for ARM64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 11 Version 22H2 for ARM64-based Systems Windows 11 Version 22H2 for x64-based Systems Windows 11 Version 23H2 for ARM64-based Systems Windows 11 Version 23H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 24H2 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server 2022 Windows Server 2022 (Server Core installation) Windows Server 2022, 23H2 Edition (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) |
Windows NTFS 信息泄露漏洞 CVE-2025-24991 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 21H2 for 32-bit Systems Windows 10 Version 21H2 for ARM64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 11 Version 22H2 for ARM64-based Systems Windows 11 Version 22H2 for x64-based Systems Windows 11 Version 23H2 for ARM64-based Systems Windows 11 Version 23H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 24H2 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server 2022 Windows Server 2022 (Server Core installation) Windows Server 2022, 23H2 Edition (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) |
Windows NTFS 信息泄露漏洞 CVE-2025-24984 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 21H2 for 32-bit Systems Windows 10 Version 21H2 for ARM64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 11 Version 22H2 for ARM64-based Systems Windows 11 Version 22H2 for x64-based Systems Windows 11 Version 23H2 for ARM64-based Systems Windows 11 Version 23H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 24H2 for x64-based Systems Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server 2022 Windows Server 2022 (Server Core installation) Windows Server 2022, 23H2 Edition (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) |
Windows FAST FAT 文件系统驱动程序远程代码执行漏洞 CVE-2025-24985 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 21H2 for 32-bit Systems Windows 10 Version 21H2 for ARM64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 11 Version 22H2 for ARM64-based Systems Windows 11 Version 22H2 for x64-based Systems Windows 11 Version 23H2 for ARM64-based Systems Windows 11 Version 23H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 24H2 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server 2022 Windows Server 2022 (Server Core installation) Windows Server 2022, 23H2 Edition (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) |
Microsoft 管理控制台安全功能绕过漏洞 CVE-2025-26633 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 21H2 for 32-bit Systems Windows 10 Version 21H2 for ARM64-based Systems Windows 10 Version 21H2 for x64-based Systems Windows 10 Version 22H2 for 32-bit Systems Windows 10 Version 22H2 for ARM64-based Systems Windows 10 Version 22H2 for x64-based Systems Windows 11 Version 22H2 for ARM64-based Systems Windows 11 Version 22H2 for x64-based Systems Windows 11 Version 23H2 for ARM64-based Systems Windows 11 Version 23H2 for x64-based Systems Windows 11 Version 24H2 for ARM64-based Systems Windows 11 Version 24H2 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server 2022 Windows Server 2022 (Server Core installation) Windows Server 2022, 23H2 Edition (Server Core installation) Windows Server 2025 Windows Server 2025 (Server Core installation) |
Windows Win32 内核子系统特权提升漏洞 CVE-2025-24983 | Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016(Server Core installation) |
解决方案
官方修复建议
微软官方已更新受影响软件的安全补丁,用户可根据不同系统版本下载安装对应的安全补丁,安全更新链接如下:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24993
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24991
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24984
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24985
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-26633
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24983
参考链接
https://msrc.microsoft.com/update-guide/releaseNote/2025-Mar
时间轴
2025/3/12
微软例行补丁日,微软官网发布漏洞安全公告。
2025/3/12
深信服千里目安全技术中心发布安全通告。
点击阅读原文,
推荐站内搜索:最好用的开发软件、免费开源系统、渗透测试工具云盘下载、最新渗透测试资料、最新黑客工具下载……
还没有评论,来说两句吧...