CVE-2026-32224

The CVE-2026-32224 entry concerns Windows Server Update Services (WSUS) with an Elevation of Privilege vulnerability. The CVSS metrics indicate a LOCAL attack vector, requiring LOW privileges and HIGH impact on confidentiality, integrity, and availability, with a HIGH attack complexity and no use...

CVE-2026-26174 Windows Server Update Service (WSUS) Elevation of Privilege Vulnerability

...

January 17, 2026—KB5077800 (OS Build 20348.4650) Out-of-band

January 17, 2026—KB5077800 OS Build 20348.4650 Out-of-band ​​This out-of-band update for Windows Server 2022 KB5077800 is cumulative. It includes updates from previous security, along with an additional fix. To learn more about differences between security updates, optional non-security preview...

CVE-2026-20856 Windows Server Update Service (WSUS) Remote Code Execution Vulnerability

...

ShadowPad Malware Actively Exploits WSUS Vulnerability for Full System Access

A recently patched security flaw in Microsoft Windows Server Update Services WSUS has been exploited by threat actors to distribute a malware known as ShadowPad. "The attacker targeted Windows Servers with WSUS enabled, exploiting CVE-2025-59287 for initial access," AhnLab Security Intelligence...

📄 Windows Server Update Service Deserialization Remote Code Execution

This Metasploit module exploits a deserialization vulnerability in the legacy serialization mechanism in Windows Server Update Services WSUS. The vulnerability allows an unauthenticated attacker to create a specially crafted event, which triggers an unsafe deserialization upon server...

Exploit for Deserialization of Untrusted Data in Microsoft

CVE-2025-59287 WSUS RCE Exploit - README Summary This rep...

Exploit for Deserialization of Untrusted Data in Microsoft

CVE-2025-59287 ⚠ This tool is created solely for educatio...

Hackers Exploit WSUS Flaw to Spread Skuld Stealer Despite Microsoft Patch

Cybercriminals exploit a WSUS vulnerability to deploy Skuld Stealer malware, even after Microsoft released an urgent security patch...

Exploit for CVE-2025-59287

wsus-decoy Defensive proof of concept decoy for CVE-2025-5928...

Microsoft Patch Tuesday Oct 2025 Fixs 175 Vulnerabilities including 3 Zero-Days

October's Microsoft Patch Tuesday fixes 170+ flaws, including 3 actively exploited zero-days and critical WSUS RCE CVSS 9.8. Immediate patching is mandatory. Final free updates for Windows 10...

October 23, 2025—KB5070883 (OS Build 17763.7922) Out-of-band

October 23, 2025—KB5070883 OS Build 17763.7922 Out-of-band Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely i...

October 23, 2025—KB5070881 (OS Build 26100.6905) Out-of-band

October 23, 2025—KB5070881 OS Build 26100.6905 Out-of-band Windows Secure Boot certificate expiration Important: Secure Boot certificates used by most Windows devices are set to expire starting in June 2026. This might affect the ability of certain personal and business devices to boot securely i...

Windows Server Update Service (WSUS) Remote Code Execution Vulnerability

Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network...

Microsoft Windows Server 代码问题漏洞

Microsoft Windows Server is a set of server operating systems from the American company Microsoft Microsoft. A remote code execution vulnerability exists in Microsoft Windows Server, which can be exploited by an attacker to execute arbitrary code on a target system by sending a specially crafted...

October 8, 2024—KB5044356 (Monthly Rollup)

October 8, 2024—KB5044356 Monthly Rollup End of support information As of January 10, 2023, Microsoft no longer provides security updates or technical support for Windows 7 Service Pack 1 SP1. We recommend that you upgrade to a supported version of Windows. For more information, see Update that...

CVE-2023-35317

Windows Server Update Service WSUS Elevation of Privilege Vulnerability...

.NET 6.0 Update - Mar 14, 2023 (KB5024670)

.NET 6.0 Update - Mar 14, 2023 KB5024670 .NET 6.0 has been refreshed with the latest update as of March 14, 2023. This update contains non-security fixes. See the release notes for details on updated packages..NET 6.0 servicing updates are upgrades. The latest servicing update for 6.0 will remove...

.NET 3.1 Update

.NET 3.1 Update .NET Core 3.1 has been refreshed with the latest update as of October 12, 2021. This update contains reliability and other non-security fixes. See the release notes for details on updated packages. .NET Core 3.1 servicing updates are upgrades, that is, the latest servicing update...

August 10, 2021 Servicing Stack Update (KB5005410)

August 10, 2021 Servicing Stack Update KB5005410 Improvements and fixes This update makes quality improvements to the servicing stack, which is the component that installs updates. Servicing stack updates SSU ensure that you have a robust and reliable servicing stack so that your devices can...