Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation

Microsoft on Thursday released out-of-band security updates to patch a critical-severity Windows Server Update Service (WSUS) vulnerability with a proof-of-concept (Poc) exploit publicly available and has come under active exploitation in the wild.

The vulnerability in question is CVE-2025-59287 (CVSS score: 9.8), a remote code execution flaw in WSUS that was originally fixed by the tech giant as part of its Patch Tuesday update published last week.

Three security researchers, MEOW, f7d8c52bec79e42795cf15888b85cbad, and Markus Wulftange with CODE WHITE GmbH, have been acknowledged for discovering and reporting the bug.

The shortcoming concerns a case of deserialization of untrusted data in WSUS that allows an unauthorized attacker to execute code over a network. It's worth noting

See Full Page

127

Interests (0)

Settings

Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation

Everything in this week's tech news: The $1,800 Galaxy XR headset is FINALLY here as Samsung launches its AI-powered answer to Vision Pro, plus the official OnePlus 15 release date, and Android Auto's

Microsoft hopes Mico succeeds where Clippy failed as tech companies warily imbue AI with personality

Instagram is finally adding a YouTube-like watch history for Reels

How a tiny bug spiraled into a massive outage that took down the internet

It Tickles Me Pink Even Celebs Like Amy Poehler Are Interested In What Keanu Reeves Is Really Like

More professionals hire cleaners

President Donald Trump Humiliates House Speaker Mike Johnson Behind Closed Doors

Why does ‘The Rocky Horror Picture Show’ still resonate after 50 years?

'Howl-O-Ween Pawty' invites costumed dogs to Struthers

Smishing Triad Linked to 194,000 Malicious Domains in Global Phishing Operation

APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign

The Cybersecurity Perception Gap: Why Executives and Practitioners See Risk Differently

Trump pardons convicted Binance founder 'CZ' Zhao

Texas Family’s Curiosity Leads Them To A Crying Rock, And What They Find Inside Is Unbelievable

Details Emerge on Funding for New White House Ballroom

Letitia James Arraigned on Mortgage Fraud Charges

Senate Votes on Bill to Pay Some Federal Workers Amid Shutdown

Ghost Adventures’ Aaron Goodwin Learns of Wife’s Murder Plot on Camera

Russian jets violate NATO airspace in Lithuania, forces respond quickly

Prosecutors Find Evidence Weakening Case Against Letitia James

Dozens of pilot whales die after stranding in New Zealand

Alabama to execute man for 1993 murder in state's latest nitrogen gas execution

Interests (0)

Settings

Newly Patched Critical Microsoft WSUS Flaw Comes Under Active Exploitation

Related News

Windows Server WSUS bug exploits underway, Microsoft's mum • The Register

Microsoft issues out-of-band patch for critical WSUS flaw • The Register

Everything in this week's tech news: The $1,800 Galaxy XR headset is FINALLY here as Samsung launches its AI-powered answer to Vision Pro, plus the official OnePlus 15 release date, and Android Auto's

Microsoft hopes Mico succeeds where Clippy failed as tech companies warily imbue AI with personality

Instagram is finally adding a YouTube-like watch history for Reels

How a tiny bug spiraled into a massive outage that took down the internet

It Tickles Me Pink Even Celebs Like Amy Poehler Are Interested In What Keanu Reeves Is Really Like

More professionals hire cleaners

President Donald Trump Humiliates House Speaker Mike Johnson Behind Closed Doors

Why does ‘The Rocky Horror Picture Show’ still resonate after 50 years?

'Howl-O-Ween Pawty' invites costumed dogs to Struthers