微软的2025年3月安全更新修复了57个弱点,包括6次零日利用。 Microsoft's March 2025 security update fixes 57 vulnerabilities, including six zero-day exploits.

微软2025年3月的Patch 星期二解决了57个弱点,包括犯罪分子已经利用的6个零天缺陷。 Microsoft's March 2025 Patch Tuesday addressed 57 vulnerabilities, including six zero-day flaws already exploited by criminals. 关键问题涉及远程代码执行和特权升级,主要是通过恶意虚拟硬盘(VHD)文件。 The critical issues involve remote code execution and privilege escalation, primarily through malicious Virtual Hard Disk (VHD) files. 其中,CVE 2025-24983,ESET报告的Win32内核缺陷,使得旧Windows版本的特权升级。 Among them, CVE-2025-24983, a Win32 kernel flaw reported by ESET, allows privilege escalation on older Windows versions. 建议用户及时更新并监测对USB港口的访问。 Users are advised to update promptly and monitor access to USB ports.