National Cyber Warfare Foundation (NCWF)

Windows Server Update Service (WSUS) remote code execution vulnerability (CVE-2025-59287)
0 user ratings		2025-10-27 17:23:06
milo
Blue Team (CND)

Technical details CVE-2025-59287 is an unsafe deserialization vulnerability in the WSUS reporting component. In short, WSUS accepts serialized data from a network request and deserializes it without performing sufficient validation. A specially crafted serialized payload can cause unexpected object instantiation during deserialization, which in turn can be abused to execute code inside the WSUS process.…


The post Windows Server Update Service (WSUS) remote code execution vulnerability (CVE-2025-59287) appeared first on Sentrium Security.


The post Windows Server Update Service (WSUS) remote code execution vulnerability (CVE-2025-59287) appeared first on Security Boulevard.



Tom Keech

Source: Security Boulevard
Source Link: https://securityboulevard.com/2025/10/windows-server-update-service-wsus-remote-code-execution-vulnerability-cve-2025-59287/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.