Russian Vulnerability Scanner Database

Back to List

CVE-2025-59287

Scores

EPSS

0.757medium75.7%
0%20%40%60%80%100%

Percentile: 75.7%

CVSS

9.8critical3.x
0246810

CVSS Score: 9.8/10

All CVSS Scores

CVSS 3.x
9.8

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

msrcnvd

CWEs

CWE-502

Related Vulnerabilities

BDU:2025-12999

Exploits

Exploit ID: CVE-2025-59287

Source: cisa

URL: https://www.cisa.gov/known-exploited-vulnerabilities-catalog

Reference Links

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287
https://hawktrace.com/blog/CVE-2025-59287
https://www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-windows-server-wsus-flaw-exploited-in-attacks/
https://www.vicarius.io/vsociety/posts/cve-2025-59287-detection-script-rce-vulnerability-in-windows-server-update-service
https://www.vicarius.io/vsociety/posts/cve-2025-59287-mitigation-script-rce-vulnerability-in-windows-server-update-service
https://gist.github.com/hawktrace/880b54fb9c07ddb028baaae401bd3951
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-59287

Vulnerable Software (61)

Type: Configuration

Vendor: *

Product: windows_server_2012

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Configuration

Vendor: *

Product: windows_server_2016

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Configuration

Vendor: *

Product: windows_server_2019

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Configuration

Vendor: *

Product: windows_server_2022

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Configuration

Vendor: *

Product: windows_server_2022_23h2

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Configuration

Vendor: *

Product: windows_server_2025

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:o:microsoft:windows_server_2012:r...

Source: nvd

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.17763.7919

Operating System: Windows 17763 build 7919

Identifier: KB5066586

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 6.3.9600.22826

Operating System: Windows 9600 build 22826

Identifier: KB5070886

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 6.3.9600.22869

Operating System: Windows 9600 build 22869

Identifier: KB5068905

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 6.2.9200.25728

Operating System: Windows 9200 build 25728

Identifier: KB5070887

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 6.2.9200.25768

Operating System: Windows 9200 build 25768

Identifier: KB5068907

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.14393.8688

Operating System: Windows 14393 build 8688

Identifier: KB5071543

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.14393.8783

Operating System: Windows 14393 build 8783

Identifier: KB5073722

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.14393.8957

Operating System: Windows 14393 build 8957

Identifier: KB5078938

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.14393.8868

Operating System: Windows 14393 build 8868

Identifier: KB5075999

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 14393.8692

Operating System: Windows 14393 build 8692

Identifier: KB5074974

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.26100.6905

Operating System: Windows 26100 build 6905

Identifier: KB5070893

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 26100.32234

Operating System: Windows 26100 build 32234

Identifier: KB5077793

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.26100.32690

Operating System: Windows 26100 build 32690

Identifier: KB5082063

Source: msrc

Type: Windows KB

Vendor: Microsoft

Product: Windows

Version: 10.0.26200.7462

Operating System: Windows 26200 build 7462

Identifier: KB5072033

Source: msrc