cve 2025 59287

Attackers leveraged a newly patched Windows Server Update Services (WSUS) remote code execution flaw, CVE‑2025‑59287, to gain SYSTEM‑level access on WSUS hosts and install the ShadowPad backdoor, according to coordinated industry and vendor reporting that ties emergency Microsoft fixes...

A recent emergency WSUS patch intended to close a critical remote‑code‑execution hole instead produced an unexpected outage in Microsoft’s restart‑free Hotpatch delivery for a small number of Windows Server 2025 instances — a servicing mishap that forced affected systems off the Hotpatch cadence...

Microsoft has issued an emergency security wake‑up call after a critical, unauthenticated remote‑code‑execution flaw in Windows Server Update Services (WSUS) — tracked as CVE‑2025‑59287 — was shown to be exploitable in the wild, prompting out‑of‑band patches from Microsoft and an accelerated...

Microsoft's emergency WSUS patch marks the escalation of a high-risk vulnerability — CVE-2025-59287 — from research disclosure to active, in‑the‑wild exploitation, forcing urgent remediation for any network that runs the Windows Server Update Services role and exposing painful gaps in vendor...

Microsoft has pushed an emergency out‑of‑band update after a botched October patch left a critical Windows Server Update Services (WSUS) vulnerability — tracked as CVE‑2025‑59287 — incompletely remediated and actively exploited in the wild, prompting urgent warnings from CISA and multiple...

Microsoft released two out-of-band emergency updates in late October that demand immediate attention from both consumers running Windows 11 and IT teams managing Windows Server infrastructure: an urgent Windows 11 fix (KB5070773) restoring USB input inside the Windows Recovery Environment...

Microsoft has released an out‑of‑band emergency patch to fix a critical remote code execution vulnerability in Windows Server Update Services (WSUS) — tracked as CVE‑2025‑59287 — and every WSUS host must be treated as a top‑tier remediation priority until it is patched or isolated. The flaw is a...

Microsoft has pushed an out‑of‑band security update to close a critical remote‑code‑execution flaw in Windows Server Update Services (WSUS) — tracked as CVE‑2025‑59287 — after initial fixes did not fully mitigate the risk, and federal guidance now treats unpatched WSUS hosts as immediate...

Microsoft pushed an out‑of‑band emergency update on October 23, 2025 to fix a critical remote code execution vulnerability in Windows Server Update Services (WSUS), tracked as CVE‑2025‑59287, and administrators must treat WSUS hosts as a top‑tier remediation priority until every affected server...