You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 59502
About this tag
CVE-2025-59502 is a Windows Remote Procedure Call (RPC) Denial of Service vulnerability that allows an unauthenticated or low-privilege attacker to exhaust resources in the RPC stack, making services unavailable across a network. Microsoft classifies it as an uncontrolled resource consumption issue (CWE-400). The tag covers mitigation and patch guidance for this specific vulnerability, including advisory details and steps to protect Windows systems from availability impacts. Discussions focus on understanding the threat, applying official patches, and securing RPC endpoints against resource exhaustion attacks.
Microsoft has published an advisory for CVE-2025-59502, a Remote Procedure Call (RPC) Denial of Service vulnerability that can allow an unauthenticated or low‑privilege actor to exhaust resources in Windows’ RPC stack and render services unavailable across a network. Background / Overview...