Security Advisories

Stay informed about the latest security vulnerabilities discovered by HawkTrace. Our research team continuously monitors and updates this database.

CVE-2025-53772 Microsoft IIS WebDeploy Remote Code Execution

Unsafe deserialization in msdeployagentservice and msdeploy.axd endpoints allows authenticated attackers to perform remote code execution through GZip + Base64 encoded payloads.

MicrosoftIIS WebDeploy.NET Framework 4.x

Critical (9.4)Patched

01.01.2025

HT-002

CVE-2024-12106 WhatsUp Gold Pre-Auth LDAP Password Theft

Pre-authentication LDAP injection vulnerability in WhatsUpGold authentication mechanism enables credential theft through malicious LDAP server configuration.

Progress SoftwareWhatsUp Gold23.1.1 - 24.0.1 Build 2177

High (8.5)Unpatched

11.10.2024

HT-001

Microsoft SQL Server Smart Admin Agent RCE

TaskAgent mechanism in Microsoft.SqlServer.SmartAdmin can be abused to achieve remote code execution through Assembly.LoadFrom and reflection-based instantiation.

MicrosoftSQL Server2012 - 2022

Critical (9.8)Patched

18.10.2025

HT-004

CVE-2025-59287 WSUS Remote Code Execution

Unsafe deserialization of AuthorizationCookie objects in WSUS GetCookie() endpoint allows unauthenticated remote code execution with SYSTEM privileges through BinaryFormatter.

MicrosoftWindows Server Update ServicesWSUS on Windows Server

Critical (9.8)Patched

22.10.2025

HT-005

CVE-2025-59287 WSUS Unauthenticated RCE

Unauthenticated remote code execution in WSUS through unsafe SoapFormatter deserialization in ReportEventBatch endpoint with specially crafted SOAP payloads.

MicrosoftWindows Server Update ServicesWSUS on Windows Server

Responsible Disclosure

HawkTrace follows responsible disclosure practices and works with vendors to ensure timely patches. Found a vulnerability? Contact us at security@hawktrace.com

Report a Vulnerability View Research