The Windows security updates for January 2025 are now available

Martin Brinkmann
Jan 14, 2025
Windows Updates
|
7

Same procedure as every year. Microsoft released the first batch of security updates of 2025 a moment ago. Security updates are available for all supported client and server versions of Windows and also other company products, including Microsoft Office.

Our overview of the monthly security updates provides users and system administrators with information and actionable advice. It pulls information from various sources, including several official Microsoft websites and official release notes.

You find, among other things, a list of known issues, direct download links, the list of major changes, a security assessment, and more in the paragraphs that follow.

Microsoft Windows Security Updates: January 2025

You may download the following Excel spreadsheet to get a list of released updates. Click on the following link to download the archive to the local device:  Windows Security Updates January 2025 Excel

Executive Summary

  • Microsoft released a total of 159 security updates for various Microsoft products and 2 security update for non-Microsoft issues (e.g. Chromium).
  • All clients affected by a Citrix software issue that may prevent the installation of the January 2025 security updates.
  • Windows clients with issues are:
    • Windows 10 version 22H2
    • Windows 11 version 22H2, 23H2, and 24H2
  • Windows Server clients with issues:
    • Windows Server 2008
    • Windows Server 2022
  • Windows 11, version 22H2, Home and Pro, have reached end of support. Microsoft will force upgrade devices to newer Windows versions.

Product overview

Each supported version of Windows and their critical vulnerabilities are listed below.

  • Windows 10 version 22H2: 120 vulnerabilities, 5 critical, 115 important
    • Microsoft Digest Authentication Remote Code Execution Vulnerability -- CVE-2025-21294
    • SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability -- CVE-2025-21295
    • BranchCache Remote Code Execution Vulnerability -- CVE-2025-21296
    • Windows OLE Remote Code Execution Vulnerability -- CVE-2025-21298
    • Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability -- CVE-2025-21307
  • Windows 11 version 22H2 and 23H2: 120 vulnerabilities, 5 critical, 115 important
    •  same as Windows 10 version 22H2
  • Windows 11 version 24H2: 121 vulnerabilities, 9 critical, 46 important
    • Windows NTLM V1 Elevation of Privilege Vulnerability -- CVE-2025-21311 
    • Plus all from Windows 10 version 22H2.

Windows Server products

  • Windows Server 2008 R2 (extended support only): 78 vulnerabilities: 6 critical,  72 important
    • Microsoft Digest Authentication Remote Code Execution Vulnerability -- CVE-2025-21294
    • SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Remote Code Execution Vulnerability -- CVE-2025-21295
    • BranchCache Remote Code Execution Vulnerability -- CVE-2025-21296
    • Windows Remote Desktop Services Remote Code Execution Vulnerability -- CVE-2025-21297
    • Windows OLE Remote Code Execution Vulnerability -- CVE-2025-21298
    • Windows Reliable Multicast Transport Driver (RMCAST) Remote Code Execution Vulnerability -- CVE-2025-21307
  • Windows Server 2012 R2 (extended support only):  unknown
  • Windows Server 2016: 110 vulnerabilities: 7 critical, 103 important
    • Windows Remote Desktop Services Remote Code Execution Vulnerability -- CVE-2025-21309
    • Plus every critical vulnerability of Windows Server 2008 R2
  • Windows Server 2019: 117 vulnerabilities: 7 critical, 112 important
    • Same as Windows Server 2016
  • Windows Server 2022: 121 vulnerabilities: 7 critical, 114 important
    • Same as Windows Server 2016
  • Windows Server 2025:  125  vulnerabilities: 7 critical, 118 important
    • Windows NTLM V1 Elevation of Privilege Vulnerability -- CVE-2025-21311 
    • Same as Windows Server 2016

Windows Security Updates

Windows 10 version 22H2

Updates and improvements:

  • Security updates

Windows 11 version 23H2

Updates and improvements:

  • Security updates

Windows 11 version 24H2

Updates and improvements:

  • Security updates

Windows Security updates

2025-01 Cumulative Security Update for Internet Explorer (KB5049994)

2025-01 Security Update for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5050411)

2025-01 Cumulative Update for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5049981)

2025-01 Cumulative Update for Windows 10 Version 1507 (KB5050013)

Server

2025-01 Security Monthly Quality Rollup for Windows Server 2012 (KB5050004)

2025-01 Security Only Quality Update for Windows Server 2008 R2 for x64-based Systems (KB5050006)

2025-01 Security Monthly Quality Rollup for Windows Server 2012 R2 (KB5050048)

2025-01 Security Monthly Quality Rollup for Windows Server 2008 R2 for x64-based Systems (KB5050049)

2025-01 Security Only Quality Update for Windows Server 2008 (KB5050061)

2025-01 Security Monthly Quality Rollup for Windows Server 2008 (KB5050063)

2025-01 Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2008 R2 for x64 (KB5050180)

2025-01 Security Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5050410)

2025-01 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5049983)

2025-01 Cumulative Update for Windows Server 2016 and Windows 10 Version 1607 (KB5049993)

2025-01 Cumulative Update for Windows Server 2019 and Windows 10 Version 1809 (KB5050008)

.NET

2025-01 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 for x64 (KB5049609)

2025-01 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 R2 for x64 (KB5049610)

2025-01 Security and Quality Rollup for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2008 R2 and Windows Server 2008 (KB5049611)

2025-01 Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 for x64 (KB5049616)

2025-01 Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 R2 for x64 (KB5049618)

2025-01 Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2008 R2 for x64 (KB5049619)

2025-01 Security Only Update for .NET Framework 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2008 R2 and Windows Server 2008 (KB5049627)

2025-01 Security Only Update for .NET Framework 4.8 for Windows Server 2008 R2 for x64 (KB5049628)

2025-01 Security Only Update for .NET Framework 4.6.2 for Windows Server 2008 (KB5050181)

2025-01 Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2008 R2 for x64 (KB5050183)

2025-01 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 for x64 (KB5050184)

2025-01 Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 for x64 (KB5050185)

2025-01 Security and Quality Rollup for .NET Framework 2.0, 3.0, 3.5 SP1, 4.6.2 for Windows Server 2008 (KB5050186)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows Server 2019 and Windows 10 Version 1809 (KB5049608)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5049613)

2025-01 Cumulative Update for .NET Framework 4.8 for Windows Server 2016 and Windows 10 Version 1607 (KB5049614)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5049615)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8 for Microsoft server operating system version 21H2 for x64 (KB5049617)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 23H2 for x64 (KB5049620)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 10 Version 22H2 and Windows 10 Version 21H2 (KB5049621)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11 (KB5049624)

2025-01 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system, version 22H2 for x64 (KB5049625)

2025-01 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows Server 2019 and Windows 10 Version 1809 (KB5050182)

2025-01 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system version 21H2 for x64 (KB5050187)

2025-01 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2 (KB5050188)

2025-01 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Microsoft server operating system, version 22H2 for x64 (KB5050190)

2025-01 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2 (KB5050416)

Servicing Stack

2025-01 Servicing Stack Update for Windows Server 2016 and Windows 10 Version 1607 (KB5050109)

2025-01 Servicing Stack Update for Windows 10 Version 1507 (KB5050112)

2025-01 Servicing Stack Update for Windows Server 2012 R2 for x64-based Systems (KB5050115)

2025-01 Servicing Stack Update for Windows Server 2012 for x64-based Systems (KB5050116)

2025-01 Servicing Stack Update for Windows Server 2008 R2 for x64-based Systems (KB5050681)

2025-01 Servicing Stack Update for Windows Server 2008 (KB5050682)

Non-Security updates

2025-01 Dynamic Update for Windows 10 Version 1607 (KB5050120)

2025-01 Dynamic Update for Windows 10 Version 1507 (KB5050121)

2025-01 Dynamic Update for Windows 10 Version 1809 (KB5050198)

2025-01 Dynamic Update for Windows 10 Version 21H2 (KB5050199)

2025-01 Dynamic Update for Microsoft server operating system for x64-based Systems (KB5050201)

2025-01 Update for Windows 11 Version 24H2 (KB5050575)

Known Issues

Windows 10 version 22H2

  • (NEW) OpenSSH may fail to start, which prevents SSH connections.
    • Workaround: Microsoft suggests updating permissions to temporarily address the issue. Instructions found here.
  • (NEW) Devices with Citrix components installed may not be able to install the January 2025 security updates.
    • Citrix has released a workaround that needs to be applied before installing the January 2025 security updates. Link here

Windows 11 version 22H2 and 23H2

  • (OLD) OpenSSH may fail to start, which prevents SSH connections.
    • Workaround: Microsoft suggests updating permissions to temporarily address the issue. Instructions found here.
  • (NEW) Devices with Citrix components installed may not be able to install the January 2025 security updates.
    • Citrix has released a workaround that needs to be applied before installing the January 2025 security updates. Link here

Windows 11 version 24H2

  • (New) OpenSSH may fail to start, which prevents SSH connections.
    • Workaround: Microsoft suggests updating permissions to temporarily address the issue. Instructions found here.
  • (NEW) Devices with Citrix components installed may not be able to install the January 2025 security updates.
    • Citrix has released a workaround that needs to be applied before installing the January 2025 security updates. Link here
  • (OLD) Players on ARM devices may not be able to play Roblox via the Microsoft Store.

Security advisories and updates

Microsoft Office Updates

You find Office update information here.

How to download and install the January 2025 security updates

Security updates are downloaded and installed automatically by default on unmanaged Windows devices. While it is possible to change that behavior, on most systems, security updates do get installed automatically.

You can speed up the installation though, as it does not happen in real-time. This can be done through the Settings app or by downloading the update file from a Microsoft server to install it manually.

Here is how you check for updates in the Settings app:

  1. Open the Start menu, type Windows Update, and select the result.
  2. Activate the "check for updates" button. This runs a manual check for updates.
  3. Activate the "download & install all" button, if the update is not downloaded automatically.

Updates are also published on the Microsoft Catalog website. You find them linked below.

Direct update downloads

Below are resource pages with direct download links, if you prefer to download the updates to install them manually.

Windows 10 version 22H2

  • KB5049981 -- 2025-01 Cumulative Update for Windows 10 Version 21H2

Windows 11 version 22H2

Windows 11 version 23H2
  • KB5050021 -- 2025-01 Cumulative Update for Windows 11 version 23H2

Windows 11 version 24H2

Additional resources

Summary
The Windows security updates for January 2025 are now available
Article Name
The Windows security updates for January 2025 are now available
Description
Here is an overview of the January 2025 security updates that Microsoft released for client and server versions of its Windows operating system.
Author
Publisher
Ghacks Technology News
Logo
Advertisement

Previous Post: «
Next Post: «

Comments

  1. EP said on January 21, 2025 at 9:44 pm
    Reply

    hi Martin:

    About “2025-01 Update for Windows 11 Version 24H2 (KB5050575)”

    this KB5050575 update was actually not yet available until recently Tuesday January 21st, which is labeled as “KB5050575: Out of Box Experience update for Windows 11, version 24H2 and Windows Server 2025: January 21, 2025”

  2. Akina said on January 15, 2025 at 9:50 pm
    Reply

    Thanks. Still keeping my Win7 PC up to date thanks to BypassEsu.

  3. Anonymous said on January 15, 2025 at 8:03 pm
    Reply

    You will not be offered the following updates if you don’t have 250MB free on your recovery environment.

    I also got this November update KB5048239, AGAIN,
    and
    KB5050411

  4. Pliskin said on January 15, 2025 at 7:29 pm
    Reply

    This update breaks the Explorer and the taskbar, and also DISM is needed. Horrible.

  5. Paul(us) said on January 15, 2025 at 1:09 am
    Reply

    Again, thank you very much for the explanation of what has been improved again this month.
    This so I understood what I was doing when I updated my operating system, to version:
    Windows 10 pro. version 22H2 (O.s. build 19042.5371)

  6. Tachy said on January 15, 2025 at 12:45 am
    Reply

    off topic:

    Anyone else seeing the “let us store our cookies” notice in edge when ever you open a new tab? You can’t miss it, it’s 2″ tall across the entire bottom of the screen.

    I’m learning the habit of not clicking the + in the tabs area and clicking a bookmark to a blank local html file instead.

    Also in Edge, I keep getting cookies from “copilot.microsoft.com” with even without visting any microsoft sites.

    I’ve set “edge://settings/content/cookies/siteData” to my start page because the “Clear browsing data on close” doesn’t work.

  7. David H said on January 14, 2025 at 9:11 pm
    Reply

    Thanks for the rundown on the newest updates. The Dynamic Update is for the WinRe partiton again. There have been reportings that once installs the update and the Windows Update reports it as installed, the next time update runs it will reappear. Borncity.com/Win has a report on this. For those not wanting the update, they can use Mircosoft showhide tool to hide or various other methods.

Leave a Reply

Check the box to consent to your data being stored in line with the guidelines set out in our privacy policy

We love comments and welcome thoughtful and civilized discussion. Rudeness and personal attacks will not be tolerated. Please stay on-topic.
Please note that your comment may not appear immediately after you post it.