Microsoft Patches Critical WSUS Vulnerability in Windows Server

25 Oct 2025

Microsoft has released urgent patches for a critical vulnerability (CVE-2025-59287) in Windows Server Update Services (WSUS) impacting Windows Server versions 2012 through 2025. The flaw, resulting from insecure deserialization of data, exposes servers to remote code execution threats.

Vulnerability Details and Exploitation

The vulnerability allows unauthenticated attackers to execute arbitrary code, compromising WSUS servers. Security researcher Kevin Beaumont successfully demonstrated the exploit, highlighting the risk of tampered updates being pushed to clients. While Microsoft issued an initial patch on 2023-10-14, further mitigation was required, leading to an out-of-band patch.

The US CISA has added this vulnerability to its catalog of known exploits, while the Dutch National Cybersecurity Center has reported exploitation activity. Security firms Huntress and WatchTowr noted attacks beginning around 2023-10-23, primarily targeting WSUS instances on default ports 8530/8531.

Advisory and Risk Assessment

Attackers have used this vulnerability to execute commands, harvest information, and exfiltrate data through proxy networks. According to Huntress, fewer than 25 susceptible hosts were publicly exposed, but WatchTowr identified over 8,000 potentially vulnerable instances, including those within high-value organizations.

Microsoft has assured that customers using the latest updates are protected and urges administrators to apply these patches immediately. It is also recommended to avoid exposing WSUS servers to the public internet to mitigate risk further.

Mitigation and Recommendations

Administrators are advised to implement the latest security patches as a priority measure. Complementary to this, companies should assess network exposure and secure WSUS deployments to prevent exploitation.

  • The critical WSUS vulnerability was identified by CVE-2025-59287 as a deserialization issue.
  • Microsoft's patch was initially released on 2023-10-14, with further mitigation issued as an out-of-band patch.
  • Exploitation was first noted around 2023-10-23, targeting default ports 8530/8531.
  • Huntress reported less than 25 exposed vulnerable hosts.
  • More than 8,000 instances are at risk according to WatchTowr.

Update: 25 Oct 2025

Top charts for Desktop Windows

uTorrent

uTorrent

Latest update uTorrent download for free for Windows PC or Android mobile

5
1032 reviews
6221255
downloads
Zona

Zona

Latest update Zona download for free for Windows PC or Android mobile

4
614 reviews
1201785
downloads
WinRAR

WinRAR

Latest update WinRAR download for free for Windows PC or Android mobile

5
735 reviews
466135
downloads
Minecraft

Minecraft

Latest update Minecraft download for free for Windows PC or Android mobile

5
750 reviews
450619
downloads

News and reviews for Desktop Windows

Top Antivirus Software for 2025 Ensures Multi-Device Security

Top Antivirus Software for 2025 Ensures Multi-Device Security

Explore the best antivirus solutions for 2025 to secure both computers and mobile devices. Protect against cyber threats with comprehensive cross-device coverage.

Read more
Microsoft Patches Critical WSUS Vulnerability in Windows Server

Microsoft Patches Critical WSUS Vulnerability in Windows Server

Microsoft addresses critical WSUS vulnerability in Windows Server. Patches issued as exploitation activity rises.

Read more
Vermintide Defines Itself with Satisfying Melee Combat

Vermintide Defines Itself with Satisfying Melee Combat

Fatshark's Vermintide, ten years in the making, focuses on first-person melee combat, delivering impactful weaponry.

Read more
Launches SlotsDaggers: Fantasy and Chance Meet on Steam

Launches SlotsDaggers: Fantasy and Chance Meet on Steam

SlotsDaggers debuts on Steam combining roguelike adventure with slot-machine tactics for a unique gaming experience.

Read more
Launch Farthest Frontier 1.0: New Medieval Builder Arrives

Launch Farthest Frontier 1.0: New Medieval Builder Arrives

Farthest Frontier 1.0 leaves Early Access, offering a polished medieval city-builder with detailed simulations and farming mechanics.

Read more
Enginefall Playtest Offers 85-Player Train FPS on Steam

Enginefall Playtest Offers 85-Player Train FPS on Steam

Enginefall's free playtest, Oct 24–26, 2025, features 85-player extraction gameplay on Steam with crafting and combat on a train.

Read more
Microsoft Releases Urgent WSUS Patch for Windows Server

Microsoft Releases Urgent WSUS Patch for Windows Server

Microsoft issues a critical WSUS patch for Windows Server to fix RCE vulnerability, impacting versions 2012-2025.

Read more
Gunfire Reborn Offers Free Play Weekend with New DLC

Gunfire Reborn Offers Free Play Weekend with New DLC

Gunfire Reborn offers free access on Steam, celebrating the Echoes from Primal Grove DLC with new heroes and weapons.

Read more
Limited Access Alpha Test for Dark Heresy Announced

Limited Access Alpha Test for Dark Heresy Announced

Owlcat Games announces Dark Heresy alpha test for 2023-12-16, restricted to pre-orders of pricey editions.

Read more
Battlefield 6 Updates XP Policies to Improve Gameplay

Battlefield 6 Updates XP Policies to Improve Gameplay

Battlefield 6 developers curb XP farms in Portal, promoting PvP balance and addressing progression challenges.

Read more
All article