You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
port 8172
About this tag
Port 8172 is the default port used by Microsoft Web Deploy (MSDeploy), a tool for deploying web applications to IIS servers. The Web Deployment Handler, also known as WMSvc, typically listens on this port at the URL https://:8172/MSDeploy.axd. Discussions on WindowsForum.com highlight a critical deserialization vulnerability, CVE-2025-53772, affecting this endpoint. An authenticated user who can reach port 8172 may exploit this flaw to achieve remote code execution on the target server. Administrators are advised to apply Microsoft's security update immediately or restrict network access to port 8172 if patching is not possible. This tag covers security advisories, patching guidance, and configuration best practices for securing the Web Deploy service on Windows servers.
TL;DR — Microsoft has published a security advisory for CVE-2025-53772: a deserialization vulnerability in Web Deploy (msdeploy) that can allow an authenticated (authorized) user who can reach the Web Deploy endpoint to cause remote code execution on the target server. If you run Web Deploy (the...