Zurück zur Liste

CERT-EU-SA2025-040 Critical Vulnerability in Windows Server Update Service (WSUS) — CERT-EU-SA2025-040

CERT-EU · CERT-EU · CERT-EU-SA2025-040

ID
CERT-EU-SA2025-040

Datum
2025-10-24

Activity
2025-10-24

Quelle
CERT-EU

Vendor
CERT-EU

Risiko
critical

Zusammenfassung

On October 23, 2025, Microsoft released an out-of-band update to address a critical vulnerability in Windows Server Update Service (WSUS). This vulnerability could allow a remote unauthenticated attacker to execute code on the targeted systems. A proof-of-concept is publicly available for this vulnerability. It is recommended to update as soon as possible.

Produkt

Security advisory

Was tun?

Allgemeine, vorsichtige Schritte (bitte prüfe die offizielle Quelle für Details):

Priorisiere sofort Patches oder Mitigations (hohes akutes Risiko).
Identifiziere betroffene Produktversionen und prüfe, ob du betroffen bist.
Spiele Hersteller-Updates/Patches ein oder setze empfohlene Mitigations um.
Lies das offizielle Advisory für betroffene Versionen und konkrete Schritte.

Offizielles Advisory

Zur offiziellen Quelle

Mehr dazu

CERT-EU CERT-EU 2025-W43

2026-007 Critical Vulnerability in Windows Netlogon

2026-06-10 CERT-EU-SA2026-007

criticalCERT-EU CERT-EU 2026-W24

2026-008 Critical vulnerabilities in Ivanti Sentry

2026-06-10 CERT-EU-SA2026-008

criticalCERT-EU CERT-EU 2026-W24

2026-006 Critical Vulnerability in PAN-OS

2026-05-06 CERT-EU-SA2026-006

criticalCERT-EU CERT-EU 2026-W19

2026-005 High Vulnerability in the Linux Kernel ("Copy Fail")

2026-04-30 CERT-EU-SA2026-005

highCERT-EU CERT-EU 2026-W18

2026-004 Critical Vulnerability in SharePoint Exploited

2026-03-25 CERT-EU-SA2026-004

criticalCERT-EU CERT-EU 2026-W13

2026-003 Multiple Vulnerabilities in Citrix NetScaler and Citrix ADC

2026-03-23 CERT-EU-SA2026-003

mediumCERT-EU CERT-EU 2026-W13