Microsoft’s latest Patch Tuesday release includes a record number of security fixes across Windows and other Microsoft software. Multiple reports say the update addresses between 570 and 622 vulnerabilities, reflecting differences in how outlets count items in Microsoft’s published security update materials. Several sources describe this as the largest patch event Microsoft has delivered on record, far exceeding the approximate 200 flaws fixed in the previous high from June.
The update also includes fixes for zero-day vulnerabilities. One source says the release contains three zero-days, while another reports two zero-days that attackers are already exploiting “under active attack.” Microsoft links these vulnerabilities to work by incident responders and, in at least one report, to vulnerability discovery efforts supported by artificial intelligence.
Overall, the coverage agrees that Microsoft is shipping multiple critical patches aimed at vulnerabilities already known to security teams and, in some cases, being actively targeted. The company’s Security Update Guide is cited as a basis for at least part of the reported totals.