Microsoft's 2024 vulnerabilities hit record high, report says

BeyondTrust has reported an all-time high in the number of Microsoft vulnerabilities for 2024, with total vulnerabilities reaching 1,360, representing an 11% increase from the previous record set in 2022.

The annual Microsoft Vulnerabilities Report from BeyondTrust indicates that despite ongoing efforts by Microsoft to improve security, attackers are continuing to exploit significant weaknesses, particularly those related to Elevation of Privilege and Remote Code Execution. These vulnerabilities have become primary goals for threat actors aiming to exploit systems.

The 2025 report offers a detailed analysis of data drawn from security bulletins publicly issued by Microsoft over the past year. This analysis offers insights into vulnerability trends, helping organisations to understand, identify, and address risks within their Microsoft ecosystems.

Among the key findings are that Elevation of Privilege vulnerabilities accounted for 40% of all reported cases. There was a notable 60% surge in Security Feature Bypass vulnerabilities, rising from 56 in 2023 to 90 in 2024, which amplifies the necessity for secure software design practices such as secure coding and threat modelling.

Although critical vulnerabilities across the Microsoft ecosystem are on the decline, vulnerabilities specific to Microsoft Edge increased by 17%. This increase brings the total to 292, including 9 deemed critical, a stark rise from none in 2022.

Vulnerabilities related to Microsoft Azure and Dynamics 365 have remained relatively steady, whereas Windows saw 587 reported vulnerabilities, 33 of which were critical in 2024. Windows Server saw 684 vulnerabilities, with 43 marked as critical.

Microsoft Office vulnerabilities nearly doubled over the past year, amounting to a total of 62. Despite higher numbers, the longer-term trend indicates that the increase in vulnerabilities is beginning to stabilise.

The report suggests that the steadying growth in vulnerability number, alongside a decline in critical vulnerability incidences, reflects the positive impact of Microsoft's security initiatives and architecture improvements in modern operating systems.

However, securing the multifaceted and diverse ecosystems that make up today's technology landscapes remains complex. Technologies such as cloud and AI services within Microsoft's expanding tech stack are identified as introducing new attack surfaces.

Key predictions underline that unpatched systems remain vulnerable, providing easy opportunities for exploitation. Consequently, new vulnerabilities are likely as attackers innovate new methods to circumvent defences.

Patches alone have proved insufficient, sometimes introducing stability risks, which emphasises the need for a layered defence strategy. Modern threat actors increasingly target identities and privileges over traditional exploits.

James Maude, Field Chief Technology Officer at BeyondTrust, commented: "This year's data offers a clear reminder that the threat landscape isn't slowing down—it's rapidly evolving. The sustained dominance of Elevation of Privilege vulnerabilities highlights how valuable privileges are to attackers and why they will continue to target identities with privileges to move laterally and gain access to critical systems. These trends reinforce the need for organisations to focus not just on patching, but on securing the underlying Paths to Privilege across their environments to reduce the attack surface of every identity and point of access."

The BeyondTrust report remains a significant resource for organisations to better comprehend the Microsoft vulnerability landscape, facilitate effective patching strategies, and reinforce identity security to guard against modern threats.