ALERT: Critical flaw in Windows, update your PC now

It's crucial that you update your operating system immediately. The company has released an emergency patch as part of its June 2025 security update, known as "Patch Tuesday," to fix this and other critical flaws. Ignoring this warning could leave your computer completely open to remote code execution attacks, where an attacker could take control of your system without your knowledge.

Tip: An image with a large red alert symbol on a binary code background and the Windows logo, with the text “CRITICAL UPDATE REQUIRED.”

The most dangerous vulnerability identified is CVE-2025-33053. It's classified as a "zero-day" threat, meaning hackers discovered and began exploiting the flaw before Microsoft could develop and distribute a fix.

This specific vulnerability is a remote code execution vulnerability that affects a Windows component called WebDAV. It has a severity score of 8.8 out of 10 on the CVSS scale, classifying it as high risk. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has already added this vulnerability to its Catalog of Known Exploited Vulnerabilities, urging all users and administrators to apply the patch by July 1, 2025.

Most users have never heard of WebDAV, and that's precisely where part of the danger lies: the threat lies in a technology invisible to the average user. WebDAV (Web Distributed Authoring and Versioning) is an extension of the HTTP protocol that allows users to manage and edit files on a remote server as if they were on their own hard drive.

If you've ever accessed files on a SharePoint site or cloud storage directly from Windows File Explorer, you've used WebDAV. An attacker exploiting the CVE-2025-33053 flaw could trick a user into opening a specially crafted file, allowing them to execute malicious code and take control of the victim's system.

The urgency of this update isn't limited to a single vulnerability. The June 2025 Patch Tuesday package fixes a total of 66 security flaws, nine of which are considered critical. These affect everyday products used by millions of people and businesses, including:

* Microsoft Office: Multiple critical vulnerabilities (CVE-2025-47162, CVE-2025-47164, etc.) that allow remote code execution.

* Remote Desktop Services (RDS): A flaw that could allow an attacker to take control of a server.

* Windows Netlogon: An elevation of privilege flaw that could allow an attacker to gain administrator control of a domain.

This accumulation of critical threats underscores the importance of not postponing the update.

"An unauthenticated attacker can execute code over the network. CISA has added CVE-2025-33053 to its catalog of known exploits and urges users to patch it by July 1, 2025." – CISA Security Alert.

You don't need to be a tech expert to protect yourself. Updating is a simple process. Follow these steps to ensure your system is protected:

For Windows 11 users:

* Click the Start button and select Settings (the gear icon).

* In the left menu, select Windows Update.

* Click the Check for Updates button.

* If the update is available (look for a June 2025 cumulative update, such as KB5060526), ​​click Download and install.

* Once the download is complete, restart your computer when prompted to complete the installation.

For Windows 10 users:

* Click the Start button and select Settings.

* Go to Update & Security.

* On the Windows Update tab, click Check for updates.

* The system will search for and begin downloading the latest security update.

* Restart your PC when prompted to apply the changes.

Sources of the guide:

In today's digital landscape, ignoring security updates isn't an option. It's the equivalent of leaving your front door open.