CVE-2025-59287 - Exploiting WSUS Deserialization of Untrusted Data for Remote Code Execution
---
Overview
A critical new vulnerability, CVE-2025-59287, has rocked system administrators: via deserialization of untrusted data in Windows Server Update Services (WSUS), attackers can execute
CVE-2025-59230 - Exploiting Improper Access Control in Windows Remote Access Connection Manager
In June 2025, a new Windows vulnerability surfaced under the ID CVE-2025-59230. This flaw lets attackers elevate their privileges locally by exploiting improper access control
CVE-2025-59211 - Sensitive Information Exposure in Windows Push Notification Core—How It Happened and How You Can Exploit or Defend
---
What Happened?
On June 7, 2025, security researchers revealed a new Windows vulnerability tracked as CVE-2025-59211. This flaw is found in the Windows Push
CVE-2025-59204 - Exploiting Uninitialized Resource in Windows Management Services For Local Information Disclosure
A new vulnerability, CVE-2025-59204, has recently been assigned to a security flaw discovered in Windows Management Services (WMS). This vulnerability, when exploited correctly, enables an
CVE-2025-59184 - How Windows High Availability Services Can Leak Sensitive Information to Local Attackers
On May 18, 2025, a new vulnerability tracked as CVE-2025-59184 was disclosed regarding information exposure in Windows High Availability (HA) Services. While HA Services help
Episode
00:00:00
00:00:00