Microsoft Issues Emergency Patch for Actively Exploited Critical WSUS Vulnerability
Critical WSUS RCE (CVE-2025-59287, CVSS 9.8) with public PoC is under active exploitation; Microsoft released out-of-band patches for affected Windows Server versions.
Microsoft issues out-of-band patch for critical WSUS flaw
A critical remote code execution vulnerability in WSUS affects Windows Server 2012–2025; immediate patching or mitigations are required for WSUS-enabled servers.
