Microsoft has released an urgent out-of-band security patch to address a severe remote code execution vulnerability in its Windows Server Update Services (WSUS). The flaw, tracked as CVE-2025-59287, is rated as critical with a maximum CVSS score of 9.8, allowing unauthorized attackers to execute code on vulnerable servers without any user interaction. The immediate patch was necessary as the vulnerability is reportedly being actively exploited in the wild, posing a significant threat to organizations that rely on WSUS to manage and distribute updates across their networks. This new update is intended to comprehensively address the issue, suggesting a previous fix released during the normal Patch Tuesday cycle was not sufficient. System administrators are strongly advised to apply the update immediately to mitigate the risk.