目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%
请我们喝杯咖啡

CVE-2025-59287— Microsoft Windows Server 代码问题漏洞

CVSS 9.8 · Critical KEV EPSS 99.96% · P100

公开利用映射 2

Metasploit · 1 wsus_deserialization_rce.rb [exploit]
Nuclei · 1 CVE-2025-59287.yaml [template]
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2025-59287 基础信息

漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Windows Server Update Service (WSUS) Remote Code Execution Vulnerability
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
可信数据的反序列化
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Microsoft Windows Server 代码问题漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Microsoft Windows Server是美国微软(Microsoft)公司的一套服务器操作系统。 Microsoft Windows Server存在代码问题漏洞,该漏洞源于攻击者利用该漏洞可以远程执行代码。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

神龙十问 — AI 深度分析

十问解析:根本原因、利用方式、修复建议、紧迫性。摘要免费,完整版需登录。

查看摘要 完整分析(登录)

受影响产品

厂商产品影响版本CPE订阅
MicrosoftWindows Server 2012 6.2.9200.0 ~ 6.2.9200.25728 -
MicrosoftWindows Server 2012 (Server Core installation) 6.2.9200.0 ~ 6.2.9200.25728 -
MicrosoftWindows Server 2012 R2 6.3.9600.0 ~ 6.3.9600.22826 -
MicrosoftWindows Server 2012 R2 (Server Core installation) 6.3.9600.0 ~ 6.3.9600.22826 -
MicrosoftWindows Server 2016 10.0.14393.0 ~ 10.0.14393.8524 -
MicrosoftWindows Server 2016 (Server Core installation) 10.0.14393.0 ~ 10.0.14393.8524 -
MicrosoftWindows Server 2019 10.0.17763.0 ~ 10.0.17763.7922 -
MicrosoftWindows Server 2019 (Server Core installation) 10.0.17763.0 ~ 10.0.17763.7922 -
MicrosoftWindows Server 2022 10.0.20348.0 ~ 10.0.20348.4297 -
MicrosoftWindows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0 ~ 10.0.25398.1916 -
MicrosoftWindows Server 2025 10.0.26100.0 ~ 10.0.26100.6905 -
MicrosoftWindows Server 2025 (Server Core installation) 10.0.26100.0 ~ 10.0.26100.6905 -

二、漏洞 CVE-2025-59287 的公开POC

#POC 描述源链接神龙链接
1PoC from hawktracehttps://github.com/keeganparr1/CVE-2025-59287-hawktracePOC详情
2WSUS Unauthenticated RCEhttps://github.com/jiansiting/CVE-2025-59287POC详情
3It is an Working exploit of new CVE found in WSUS.https://github.com/garvitv14/CVE-2025-59287POC详情
4Windows Server Update Service contains an insecure deserialization vulnerability caused by deserialization of untrusted data. An unauthorized attacker with network access can exploit this to execute arbitrary code remotely, potentially leading to full system compromise. https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2025/CVE-2025-59287.yamlPOC详情
5PoC for CVE-2025-59287https://github.com/0xBruno/WSUSploit.NETPOC详情
6Defensive PoC decoy for CVE-2025-59287 (WSUS) - emulates WSUS endpoints, captures request bodies and metadata, saves evidence for forensic analysis, and provides validation harness and detection rules.https://github.com/Lupovis/Honeypot-for-CVE-2025-59287-WSUSPOC详情
7CVE-2025-59287https://github.com/FurkanKAYAPINAR/CVE-2025-59287POC详情
8powershell version of hawktrace POC exploithttps://github.com/tecxx/CVE-2025-59287-WSUSPOC详情
9Module PowerShell de réponse à l'incident CVE-2025-59287 — WSUS Remote Code Execution (RCE)https://github.com/RadzaRr/WSUSResponderPOC详情
10Helps defenders find their WSUS configurations in the wake of CVE-2025-59287https://github.com/mubix/Find-WSUSPOC详情
11CVE-2025-59287 is a critical RCE vulnerability in Windows Server Update Services (WSUS) caused by unsafe deserialization of untrusted data. It allows remote attackers to execute arbitrary code without authentication. Urgent patching is advised due to active exploitation.https://github.com/mrk336/Breaking-the-Update-Chain-Inside-CVE-2025-59287-and-the-WSUS-RCE-ThreatPOC详情
12CVE-2025-59287 — Critical unauthenticated RCE in Windows Server Update Services (WSUS) via unsafe deserialization of an AuthorizationCookie, enabling SYSTEM-level compromise and active exploitation; patch or isolate WSUS (ports 8530/8531) immediately.https://github.com/AdityaBhatt3010/CVE-2025-59287-When-your-patch-server-becomes-the-attack-vectorPOC详情
13Guía de respuesta rápida y script de auditoría para CVE-2025-59287 (RCE crítica en WSUS).https://github.com/esteban11121/WSUS-RCE-Mitigation-59287POC详情
14Verificacion de vulnerabilidad en WSUS https://github.com/fsanzmoya/wsus_CVE-2025-59287POC详情
15CVE-2025-59287 注入WolfShell内存马https://github.com/0x7556/CVE-2025-59287POC详情
16This is an exploit script written in C# to aid gaining a reverse shell on targets with Windows Server Update Service(WSUS) CVE-2025-59287. We will deliver a reverse shell payload through encrypted SOAP req.https://github.com/QurtiDev/WSUS-CVE-2025-59287-RCEPOC详情
17WSUS vulnerability PoChttps://github.com/Sid6Effect/CVE-2025-59287POC详情
18Exploitation proof-of-concept for CVE-2025-59287 - a critical vulnerability in the Windows Server Update Service (WSUS) caused by the deserialization of untrusted data. This flaw allows an unauthorized attacker to execute arbitrary code over a network, posing a significant security risk.https://github.com/dexterm300/cve-2025-59287-exploit-pocPOC详情
19WSUS vulnerability PoChttps://github.com/th1n0/CVE-2025-59287POC详情
20Nonehttps://github.com/Twodimensionalitylevelcrossing817/CVE-2025-59287POC详情
21Nonehttps://github.com/Adel-kaka-dz/cve-2025-59287POC详情
22Nonehttps://github.com/17patmaks/CVE-2025-59287-Sigma-RulePOC详情
23CVE-2025-59287https://github.com/gud425/gud425.github.ioPOC详情
24Nonehttps://github.com/LuemmelSec/CVE-2025-59287---WSUS-SCCM-RCEPOC详情
25CVE 2025 59287https://github.com/you-dream-1hall/CVE-2025-59287POC详情
26🔍 Analyze WSUS deserialization behavior to enhance security, generate reports, and identify configuration weaknesses in your infrastructure.https://github.com/salman5230/CVE-2025-59287POC详情
27Nonehttps://github.com/ross-ns/WSUS-CVE-2025-59287POC详情
28CVE 2025 59287https://github.com/vatslaaeytoygag/CVE-2025-59287POC详情
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2025-59287 的情报信息

登录查看更多情报信息。

同批安全公告 · Microsoft · 2025-10-14 · 共 167 条

CVE-2025-497089.9 CRITICALMicrosoft Graphics Component 资源管理错误漏洞
CVE-2025-553159.9 CRITICALMicrosoft ASP.NET Core 环境问题漏洞
CVE-2025-592138.8 HIGHMicrosoft Configuration Manager SQL注入漏洞
CVE-2025-587188.8 HIGHMicrosoft Remote Desktop Client 资源管理错误漏洞
CVE-2025-592958.8 HIGHMicrosoft Windows 安全漏洞
CVE-2025-592498.8 HIGHMicrosoft Exchange Server 安全漏洞
CVE-2025-592288.8 HIGHMicrosoft SharePoint 输入验证错误漏洞
CVE-2025-587168.8 HIGHMicrosoft Windows 输入验证错误漏洞
CVE-2025-587158.8 HIGHMicrosoft Windows 输入验证错误漏洞
CVE-2025-592378.8 HIGHMicrosoft SharePoint 代码问题漏洞
CVE-2025-537828.4 HIGHMicrosoft Exchange Server 安全漏洞
CVE-2025-592368.4 HIGHMicrosoft Excel 资源管理错误漏洞
CVE-2025-592928.2 HIGHMicrosoft Azure 安全漏洞
CVE-2025-592918.2 HIGHMicrosoft Azure 安全漏洞
CVE-2025-592508.1 HIGHMicrosoft JDBC Driver 输入验证错误漏洞
CVE-2025-592337.8 HIGHMicrosoft Excel 安全漏洞
CVE-2025-556977.8 HIGHMicrosoft Azure 安全漏洞
CVE-2025-592077.8 HIGHMicrosoft Windows Kernel 安全漏洞
CVE-2025-592317.8 HIGHMicrosoft Excel 安全漏洞
CVE-2025-587147.8 HIGHMicrosoft Windows Ancillary Function Driver for WinSock 访问控制错误漏洞

显示前 20 条,共 167 条。 查看全部 → →

IV. Related Vulnerabilities

Same product: Windows Server 2012
Same vendor: Microsoft
Same weakness: CWE-502

V. Comments for CVE-2025-59287

暂无评论

发表评论