National CSIRT-CY | National Computer Security Incident Response Team of Cyprus

Η Εθνική Ομάδα Αντιμετώπισης Ηλεκτρονικών Επιθέσεων προβλέπει την αύξηση της ηλεκτρονικής ασφαλείας ενισχύοντας την προστασία του κυβερνοχώρου των Εθνικών Κρίσιμων Πληροφοριακών Υποδομών, των τραπεζών και των παροχών επικοινωνίας της Κυπριακής Δημοκρατίας.

Helpline: 1490

Windows Server Update Service (WSUS) Remote Code Execution Vulnerability

10 November 2025

The Digital Security Authority (DSA) wants to bring to your attention a vulnerability affecting Windows Server Update Service (WSUS).

Technical Details

Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
A remote, unauthenticated attacker could send a crafted event that triggers unsafe object deserialization in a legacy serialization mechanism, resulting in remote code execution.

Recommendations

The Digital Security Authority recommends to perform the necessary mitigation steps that can be found in Microsoft site here.

References

The information presented in this report is based on available data up to the 05th of November 2025.

National CSIRT-CY | National Computer Security Incident Response Team of Cyprus

Windows Server Update Service (WSUS) Remote Code Execution Vulnerability

10 November 2025

Cyber threats require heightened defences

Working towards a trusted and cyber secure Europe

Protect your cyber hygiene

Cyber Europe 2022 [exercise]