Indian Govt Issues High-Severity Microsoft Security Warning

The authorities in India have pointed out a major cybersecurity issue concerning Microsoft products, just days after they warned Apple users about the weaknesses in their devices. The Indian Computer Emergency Response Team (CERT-In) issued an alert on November 13 as CIAD-2025-0043, exposing a major security hole in the Windows operating system that is being utilized by the hackers.

The warning from CERT-In includes a wide range of software products such as Windows OS, MS Office, Azure, SQL Server, and the tools for developers. The weakness, which is indicated by the CVE-2025-62215 number, is in the kernel of Windows. Cybersecurity experts are advising that this flaw enables criminals to get higher privileges thereby making them the administrators of the system with the affected Windows machines.

The release of the advisory highlights that this is a very real danger. According to the advisory "Exploited in the wild", attackers are already using this vulnerability to gain the access to and potentially steal the data, and also to prevent the use of the system through ransomware or to execute arbitrary code. The people who do not apply the updates will be allowing the intruders to take over their computers, spy on them, and also disrupt their operations.

This notification was given shortly after CERT-In pointed out that several vulnerabilities existed in Apple's iOS and iPadOS. These weaknesses could be utilized by attackers to gain control of the Apple devices. Now with Microsoft products being investigated, the spotlight is on both individual and business users.

Users Affected and Risks Hitting

Windows OS

MS Office (Word, Excel, PowerPoint)

Azure and SQL Server for the corporate sector

System Centre and tools for developers

The users may face problems such as stealing of their data, and ransomware attacks, and the attackers might be getting the ability to execute any malicious code remotely without the user's presence.

The vulnerability has been patched by Microsoft. CERT-In is suggesting the subsequent measures:

Install Windows Updates: Go to Settings > Windows Update and press the “Check for Updates” button. The November 2025 Cumulative Update should be installed immediately and the system should be rebooted.

Update Office Applications: Start any Office software, choose File > Account > Update Options > Update Now. All Office apps should be updated.

Restart Devices: In many cases, the application of a security fix is contingent upon the reboot of the system. Do not allow the device to stay in sleep mode for a long time without rebooting it.

Users are reminded by digital security experts that delaying updates only results in increased risk. Authorities' warnings have been repeated three times in one week, thus it is a must for users to prioritize patching their systems to avoid the risk of breaches.