Microsoft Issues Emergency Patch for Actively Exploited Critical WSUS Vulnerability
Critical WSUS RCE (CVE-2025-59287, CVSS 9.8) with public PoC is under active exploitation; Microsoft released out-of-band patches for affected Windows Server versions.
Microsoft issues out-of-band patch for critical WSUS flaw
A critical remote code execution vulnerability in WSUS affects Windows Server 2012–2025; immediate patching or mitigations are required for WSUS-enabled servers.
Microsoft has resolved an issue that hindered Windows 11 24H2 updates through WSUS following the April 2025 security updates, streamlining fixes for businesses.
