2025-10-24 16:26: Emergency update for critical vulnerability in Microsoft WSUS (CVE-2025-59287)

#ufrstatus The CVE-2025-59287 vulnerability allows remote execution of arbitrary program code and was already addressed on the last patch day, but according to the manufacturer, it was not completely closed at that time. A proof-of-concept for exploiting the vulnerability is now publicly known. Potentially affected systems at the University of Freiburg have been identified and mitigation of the vulnerability has been initiated.

Microsoft has published a notice regarding emergency updates for a critical vulnerability in Microsoft Windows Server Update Service (WSUS).

The CVE-2025-59287 vulnerability allows remote execution of arbitrary program code and was already addressed on the last patch day, but according to the manufacturer, it was not completely closed at that time. A proof-of-concept for exploiting the vulnerability is now publicly known.

Information about the security issue can be found at the manufacturer's website:
- https://learn.microsoft.com/en-us/windows/release-health/windows-message-center#3668
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59287

at CERT-Bund:
- https://www.bsi.bund.de/SharedDocs/Cybersicherheitswarnungen/DE/2025/2025-288009-1032

and at DFN:
- https://portal.security.dfn.de/advisories/details/2025-2859

Systems at the University of Freiburg that could potentially be affected by the vulnerability have already been identified and any necessary mitigation measures have been initiated.

(MH, 24 October 2025, 16:30)