- Windows 10 has received its latest security update
- Fixes 172 security flaws in the operating system, including six zero-day vulnerabilities
- It’s sobering to imagine how these security holes will accumulate over the months for those who don’t sign up for extended support.
Windows 10 has received its latest update, at least as far as official support is concerned, and it’s an eye-opener about the dangers you could face if you continue using the operating system beyond its end of life.
Bleeping Computer reports that the October 2025 update comes with a host of fixes for security issues in Windows 10.
In fact, this final cumulative update for Windows 10 contains the cure for 172 security flaws, and that includes six zero-day vulnerabilities.
A zero-day vulnerability is a security hole in Windows 10 that Microsoft was not aware of when it emerged and the attack vector was made public. The name refers to the fact that Microsoft did not have days to respond to the threat (in other words, it was not discovered by the developer or patched in advance, as is often the case).
Therefore, these are concerning flaws, because malicious actors may be attempting to exploit them, given their unresolved nature, and patches for them are contained in this October update.
Fixed zero-day issues in Windows 10 include a bug in Windows Remote Access Connection Manager, a Secure Boot bypass, and a hole in TPM 2.0 (somewhat ironic, since this is the security feature required for an upgrade to Windows 11, a functionality that some Windows 10 PCs lack, ruling them out).
Analysis: wrong thinking
Reading about security vulnerabilities is always boring and boring, and they’re often found in things in Windows you won’t go near, like Remote Access Connection Manager (and one of the zero days is a bug in a fax modem driver, believe it or not).
However, there are still more than 170 security problems here, and that in just one month. Six months later, you’ll see thousands of these tiny holes in Windows 10, and over time, the older operating system will become a real security sieve, so to speak.
The way these vulnerabilities multiply underscores why it’s best not to continue running Windows 10 without security updates, even if that’s a path some people will undoubtedly take (as was the case with Windows 7).
If you want to argue that you don’t really need security updates for Windows 10 from Microsoft, I’ve explained why you probably do in a recent article. And there’s really no excuse with Windows 10, as consumers can get a year of additional support for free through Microsoft’s Extended Security Updates (ESU) program (and while there is a slight downside to that ESU, it’s no big deal in my book).
