The April 2025 Security Update Review

This is a vulnerability bulletin containing a table of Microsoft- and Chromium-related CVEs (various Windows components, Office, Edge, Hyper-V, Remote Desktop, LDAP, TCP/IP, etc.) including severity, CVSS scores, and whether exploitation has been observed; it includes multiple Critical RCEs and Important EoP/SFB issues and at least one CVE flagged as exploited (CVE-2025-29824). Administrators should prioritize patching critical RCEs and any CVEs listed as exploited.