Operations | Monitoring | ITSM | DevOps | Cloud

Key Takeaways December Patch Tuesday lineup includes one known exploit in the Windows OS that warrants attention. Third-party Patch Tuesday updates include Mozilla and Adobe. Google Chrome released iOS updates so far, but a Chrome Desktop release is expected this week. Here we are at the final Patch Tuesday for 2025. Microsoft has resolved 56 CVEs (two Critical and 54 Important). Included in this release is one known exploited (CVE-2025-62221) and two publicly disclosed CVEs (CVE-2025-54100 and CVE-2025-64671).

Ivanti’s 2025 DEX report reveals a surprising disconnect: While IT leaders strongly believe in DEX, its adoption and impact are plateauing across industries. Join us for a thought-provoking webinar with Ivanti’s Mariah Shotts, along with special guest and AI expert Rob May. We’ll unpack findings from our global survey of 3,300 IT professionals and office workers, revealing: Whether you’re just beginning your DEX journey or looking to optimize your existing program, this session will help you benchmark your progress, close critical gaps and chart a future-proof strategy.

Adobe has released five updates, featuring a major cold fusion update addressing over 140 CVEs. Microsoft has issued six updates, with no critical CVEs in its OS update. Mozilla has rolled out three critical updates for Firefox. Effective management of CVEs relies on risk-based prioritization, as individual ratings may not accurately represent real-world risks.

Ivanti is a leading enterprise software company that offers a powerful, cloud-based IT and security platform. Our solutions are designed to scale with your business, helping IT and Security teams boost operational efficiency, cut costs and stay ahead of security threats. The Ivanti Neurons platform is cloud-native, providing a unified and reusable foundation for consistent visibility, scalability, and secure delivery. Trusted by over 34,000 customers, including 85 of the Fortune 100, Ivanti empowers organizations to tackle challenges with end-to-end solutions.

Timely application updates are crucial, especially after security vulnerabilities such as zero-day exploits. Organizations must adopt a proactive update strategy for third-party applications. Challenges with auto-updaters require user action to complete updates. Specific instances of zero-day vulnerabilities in Google Chrome and Edge highlight the need for consistent and frequent updates to reduce security risks.

Ivanti is a leading enterprise software company that offers a powerful, cloud-based IT and security platform. Our solutions are designed to scale with your business, helping IT and Security teams boost operational efficiency, cut costs and stay ahead of security threats. The Ivanti Neurons platform is cloud-native, providing a unified and reusable foundation for consistent visibility, scalability, and secure delivery. Trusted by over 34,000 customers, including 85 of the Fortune 100, Ivanti empowers organizations to tackle challenges with end-to-end solutions.

Ivanti is a leading enterprise software company that offers a powerful, cloud-based IT and security platform. Our solutions are designed to scale with your business, helping IT and Security teams boost operational efficiency, cut costs and stay ahead of security threats. The Ivanti Neurons platform is cloud-native, providing a unified and reusable foundation for consistent visibility, scalability, and secure delivery. Trusted by over 34,000 customers, including 85 of the Fortune 100, Ivanti empowers organizations to tackle challenges with end-to-end solutions.