CVE-2025-53772

Published Aug 12, 2025

Last updated a month ago

CVSS high 8.8
Microsoft Web Deploy

Overview

AI description

Automated description summarized from trusted sources.

CVE-2025-53772 is a security vulnerability found in Microsoft's Web Deploy tool. The vulnerability arises from the deserialization of untrusted data, which could allow an authorized attacker to execute code over a network. The vulnerability stems from improper deserialization of data within the Web Deploy framework, a tool used for deploying web applications to IIS web servers. An attacker with low-level privileges could exploit this flaw to gain control over vulnerable systems. The attack can be executed remotely with low complexity and requires no user interaction.

Description
Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network.
Source
secure@microsoft.com
NVD status
Analyzed
Products
web_deploy_4.0

Risk scores

CVSS 3.1

Type
Primary
Base score
8.8
Impact score
5.9
Exploitability score
2.8
Vector string
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity
HIGH

Weaknesses

secure@microsoft.com
CWE-502

Social media

Hype score
Not currently trending

  1. CVE-2025-53772 — IIS Web Deploy RCE https://t.co/wLss7sHYuB #cybersecurity #vulnerability #rce #exploitation #cve https://t.co/lgajoWGAD3

    @blackstormsecbr

    8 Sept 2025

    541 Impressions

    8 Retweets

    9 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 The Zero-Click Nightmare: How #CVE-2025-53772 Turns Your IIS Server into a Hacker's Playground https://t.co/yMO4LLTOBu Educational Purposes!

    @UndercodeUpdate

    7 Sept 2025

    46 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. ⚠️ Heads up — CVE-2025-53772 in Microsoft Web Deploy (CVSS 8.8) Unsafe deserialization of GZip + Base64 headers in msdeploy.axd & msdeployagentservice can let authenticated attackers execute code remotely. Make sure to patch and review access controls! 🔗 https://t.co

    @bhttparitosh

    7 Sept 2025

    20 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  4. https://t.co/dbqnXZGDkP CVE-2025-53772 IIS WebDeploy RCE #github #exploit

    @akaclandestine

    5 Sept 2025

    7 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  5. 🛑 CVE-2025-53772: Critical RCE Vulnerability in Microsoft IIS WebDeploy 🔍 A severe flaw (CVSS 8.8) was identified in the msdeploy.agtentservice and msdeploy.axd endpoints of Microsoft IIS WebDeploy. The vulnerability allows authenticated attackers to exploit unsafe HTTP hea

    @tpx_Security

    4 Sept 2025

    10 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  6. 🛑 CVE-2025-53772: Vulnerabilidad crítica RCE en Microsoft IIS WebDeploy 🔍 Se identificó una falla grave (CVSS 8.8) en los endpoints msdeploy.agtentservice y msdeploy.axd de Microsoft IIS WebDeploy. La vulnerabilidad permite a atacantes autenticados explotar deserializaci

    @tpx_Security

    4 Sept 2025

    72 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  7. CVE-2025-53772 IIS WebDeploy RCE vulnerability in msdeployagentservice and msdeploy.axd endpoints of Microsoft Web Deploy, where unsafe deserialization of HTTP header contents allows an authenticated attacker (RCE). https://t.co/BWAuS7Wvjd… https://t.co/lpXJZJngxm

    @sirjameshackz

    4 Sept 2025

    54 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  8. CVE-2025-53772 IIS WebDeploy RCE | HawkTrace - https://t.co/kPT8jZiJbp

    @piedpiper1616

    3 Sept 2025

    1047 Impressions

    3 Retweets

    19 Likes

    2 Bookmarks

    0 Replies

    0 Quotes

  9. 🚨CVE-2025-53772: Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network. PoC: https://t.co/CC6Xip156m ZoomEye Dork: app="Microsoft Web Deploy" Results: 20,852 ZoomEye Link: https://t.co/RsElM8QbFP Write-up: https://t.c

    @DarkWebInformer

    3 Sept 2025

    3556 Impressions

    0 Retweets

    20 Likes

    13 Bookmarks

    1 Reply

    0 Quotes

  10. 🚨 RCE PoC (CVE-2025-53772) hits IIS Web Deploy • Unsafe msdeploy headers • Auth’d attackers can run system commands Most SMBs can’t monitor every threat. 🛡️Cybersuite gives you real protection at an affordable price. 👉https://t.co/cf5pQpMD22 🔗https://t.co/j

    @CyberSuite_com

    3 Sept 2025

    92 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  11. CVE-2025-53772 IIS WebDeploy RCE vulnerability in msdeployagentservice and msdeploy.axd endpoints of Microsoft Web Deploy, where unsafe deserialization of HTTP header contents allows an authenticated attacker (RCE). https://t.co/pcu08yldyg https://t.co/cDAJer1ZRS

    @cyber_advising

    3 Sept 2025

    6039 Impressions

    28 Retweets

    102 Likes

    29 Bookmarks

    0 Replies

    0 Quotes

  12. CVE-2025-53772 IIS WebDeploy RCE | HawkTrace https://t.co/mQPl0yMRWD

    @willyc0de

    3 Sept 2025

    45 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  13. 🚨 CVE-2025-53772 – IIS Web Deploy sob ataque Uma falha crítica foi divulgada no Microsoft IIS Web Deploy, identificada como CVE-2025-53772. Essa vulnerabilidade permite execução remota de código (RCE) via deserialização insegura. ⸻ 🔎 Como funciona o ataque?

    @sidnei_f_inacio

    3 Sept 2025

    55 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  14. 🚨 CVE-2025-53772 – IIS Web Deploy sob ataque Uma falha crítica foi divulgada no Microsoft IIS Web Deploy, identificada como CVE-2025-53772. Essa vulnerabilidade permite execução remota de código (RCE) via deserialização insegura. ⸻ 🔎 Como funciona o ataque? •

    @sidnei_f_inacio

    3 Sept 2025

    3 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  15. CVE-2025-53772 IIS WebDeploy RCE | HawkTrace https://t.co/deqkCBWTo0

    @akaclandestine

    3 Sept 2025

    1016 Impressions

    3 Retweets

    9 Likes

    4 Bookmarks

    0 Replies

    0 Quotes

  16. Details on the critical RCE vulnerability we discovered in Microsoft Web Deploy CVE-2025-53772. https://t.co/M24rxiwhAA #iiswebdeploy #infosec #webdeploy #iis #cve-2025-53772 https://t.co/BnJRJcCOS9

    @hawktrace

    2 Sept 2025

    22940 Impressions

    45 Retweets

    217 Likes

    106 Bookmarks

    0 Replies

    2 Quotes

  17. 🚨 New High-Severity Vulnerability Alert 🚨 CVE-2025-53772 (CVSS 8.8) impacts Microsoft Web Deploy – improper deserialization of untrusted data → potential Remote Code Execution (RCE). https://t.co/VwIOM17yGo #CVE2025 #Infosec #CyberSecurity #Vulnerability #Exploit

    @sh3llz_com

    18 Aug 2025

    6 Impressions

    0 Retweets

    1 Like

    0 Bookmarks

    0 Replies

    0 Quotes

  18. تم اكتشاف ثغرة خطيرة (CVE-2025-53772) في Microsoft IIS Web Deploy 4.0 تسمح للمهاجمين المصادق عليهم بتنفيذ تعليمات برمجية عن بُعد بسبب مشكلة في التسلسل غير الآمن (Deserialization).

    @cyber_shockry

    17 Aug 2025

    9 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    1 Reply

    0 Quotes

  19. ⚠️ Microsoft IIS Web Deploy Vulnerability Let Attackers Execute Remote Code Read more: https://t.co/a5N17bYUIw 1. CVE-2025-53772 in Web Deploy 4.0 allows remote code execution. 2. Requires only low privileges and no user interaction. 3. Install security updates immediate

    @The_Cyber_News

    17 Aug 2025

    1563 Impressions

    11 Retweets

    25 Likes

    6 Bookmarks

    1 Reply

    0 Quotes

  20. Microsoft の Web Deploy 4.0 に深刻な脆弱性(CVE-2025-53772)が発見され、2025年8月12日に公開された。 CVSS スコアは 8.8 と高く、認証済みの攻撃者が細工した HTTP リクエストを送ることで任意コード実行が可能になる。

    @yousukezan

    16 Aug 2025

    770 Impressions

    1 Retweet

    1 Like

    1 Bookmark

    0 Replies

    0 Quotes

  21. اگر وب سرور IIS داری برو Update کن. به تازگی برای ابزار Web Deploy در iis ، آسیب پذیری با کد شناسایی CVE-2025-53772 از نوع RCE منتشر شده است . برای پیشگیری و مقابله به روز رسانی

    @AmirHossein_sec

    16 Aug 2025

    23 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  22. 🚨 A Microsoft divulgou uma falha crítica no Web Deploy que permite execução remota de código (CVE-2025-53772). A vulnerabilidade pode ser explorada por atacantes com privilégios mínimos, afetando servidores com IIS em ambientes corporativos. 👉 https://t.co/mcVewdpdkx

    @TechStartXYZ

    14 Aug 2025

    28 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  23. 🚨 Microsoft IIS Web Deploy Remote Code Execution CVE-2025-53772 / 8.8 Blog post coming soon... https://t.co/gPA4RmiqUo #msrc #PatchTuesday https://t.co/TCPImSO1OO

    @int20z

    13 Aug 2025

    3337 Impressions

    13 Retweets

    82 Likes

    39 Bookmarks

    1 Reply

    0 Quotes

  24. [CVE-2025-53772: HIGH] Deserialization of untrusted data in Web Deploy allows an authorized attacker to execute code over a network.#cve,CVE-2025-53772,#cybersecurity https://t.co/tk78eibwPA https://t.co/7MesPqH5Ba

    @CveFindCom

    12 Aug 2025

    45 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Configurations

References

Sources include official advisories and independent security research.