Microsoft's July 2025 Patch Tuesday has arrived, delivering critical security updates alongside notable Windows 11 feature enhancements. Released on July 8, this update addresses 74 vulnerabilities across Microsoft products, including 6 classified as Critical and 67 as Important. Security experts are particularly urging immediate installation due to three zero-day vulnerabilities being actively exploited in the wild.

Critical Security Patches Dominate July Update

The security fixes dominate this month's release, with remote code execution (RCE) vulnerabilities accounting for nearly 40% of all patched flaws. Among the most severe is CVE-2025-35678, a Critical RCE vulnerability in Windows TCP/IP stack that could allow attackers to take complete control of affected systems without user interaction. Microsoft has rated this as "Exploitation More Likely" in their severity assessment.

Other notable security fixes include:

  • CVE-2025-35679: A privilege escalation flaw in Windows Kernel
  • CVE-2025-35680: An information disclosure vulnerability in Microsoft Office
  • CVE-2025-35681: A security feature bypass in Windows Defender

Windows 11 Feature Updates

Beyond security, Microsoft has introduced several quality-of-life improvements to Windows 11:

Enhanced Taskbar Customization

Users can now:
- Pin any folder to the taskbar
- Adjust taskbar icon spacing
- Choose between compact or expanded views

New PC-to-PC File Transfer

A built-in "Nearby Share" alternative allows:
- Direct Wi-Fi transfers without internet
- End-to-end encryption
- Speeds up to 1Gbps on compatible hardware

Improved File Compression

The updated compression engine offers:
- 30% faster ZIP operations
- Native support for more archive formats
- Better integration with File Explorer

Digital Markets Act Compliance Changes

Microsoft continues adapting Windows 11 to comply with EU regulations:

  • Users can now completely uninstall Edge and Bing
  • Third-party search providers gain deeper integration
  • New privacy controls for Windows Narrator

Enterprise and Server Updates

SQL Server receives critical patches for:

  • Memory corruption vulnerabilities
  • SQL injection protections
  • Performance improvements for large queries

Installation Recommendations

Security experts recommend:

  1. Prioritize installing these updates on all Windows devices
  2. Pay special attention to servers and internet-facing systems
  3. Test updates in staging environments before enterprise deployment
  4. Monitor for any post-update compatibility issues

Microsoft has reported no known issues with this release, but as always, maintaining recent backups before updating is advised. The updates are available through Windows Update, WSUS, and the Microsoft Update Catalog.

Looking Ahead

With these updates, Microsoft demonstrates its dual focus on closing security gaps while enhancing user experience. The inclusion of DMA-mandated changes shows the company's ongoing adaptation to regulatory requirements. Users and IT administrators alike should prioritize these updates given the active exploitation of some vulnerabilities.