CVE-2025-59230 - Vulnerability Details

Threat entity extracted from intelligence sources

Frequency
11
occurrences
First Seen
November 6, 2025
Last Seen
December 24, 2025

CVE-2025-59230 is a vulnerability tracked across 7 threat clusters and 11 intelligence report mentions on ThreatCluster. First observed November 6, 2025; most recent activity December 24, 2025.

Related Threat Clusters

  • FortiWeb WAF Vulnerability Enables Full Admin Control Exploitation

    A critical vulnerability in FortiWeb Web Application Firewall (WAF) has been actively exploited, allowing attackers to gain full administrative access to affected systems. Organizations using FortiWeb are at risk of…

    100 articles · Updated November 15, 2025
  • Windows RasMan Zero-Day Vulnerability Exploited with Unofficial Patches

    A new zero-day vulnerability in Windows' Remote Access Connection Manager (RasMan) has been identified, allowing attackers to crash the service. Unofficial patches have been released by ACROS Security to mitigate this…

    5 articles · Updated December 12, 2025
  • Multiple Critical Windows Vulnerabilities Discovered and Exploited

    Three critical vulnerabilities in Windows systems have been reported, including CVE-2025-59230, which allows attackers to gain admin rights, and CVE-2025-54100, a PowerShell vulnerability requiring urgent patches.…

    3 articles · Updated December 15, 2025
  • Critical Windows RasMan Vulnerability Allows Arbitrary Code Execution

    A critical vulnerability in the Windows Remote Access Connection Manager (RasMan) has been identified, allowing local attackers to execute arbitrary code with System privileges. This issue was linked to CVE-2025-59230,…

    3 articles · Updated December 15, 2025
  • WebRAT Malware Distributed via GitHub Exploits

    WebRAT malware, a backdoor with info-stealing capabilities, is being distributed through GitHub repositories claiming to host proof-of-concept exploits for recently disclosed vulnerabilities. Initially targeting gamers…

    4 articles · Updated December 23, 2025
  • Washington Post Data Breach Linked to Oracle E-Business Suite Exploit

    The Washington Post has confirmed a data breach affecting nearly 10,000 current and former employees due to a cyberattack linked to vulnerabilities in Oracle's E-Business Suite. The breach, attributed to the Cl0p…

    50 articles · Updated December 1, 2025
  • Oracle EBS Zero-Day CVE-2025-61882 Targets Multiple Organizations

    In October 2025, the Oracle E-Business Suite (EBS) zero-day vulnerability CVE-2025-61882 was exploited by the Clop ransomware gang, affecting numerous organizations including Schneider Electric, Pan American Steel, and…

    2 articles · Updated November 6, 2025

Recent Intelligence Reports

  • Webrat turns GitHub PoCs into a malware trap — Csoonline · December 24, 2025
  • Critical Windows Vulnerability CVE-2025-59230 Exposed — Redhotcyber · December 15, 2025
  • Windows Remote Access Connection Manager Flaw Enables Arbitrary Code Execution — Cyberpress · December 15, 2025
  • Windows Remote Access Connection Manager Vulnerability Enables Arbitrary Code Execution — Cybersecuritynews · December 15, 2025
  • Windows Remote Access Connection Manager Flaw Allows Arbitrary Code Execution — Gbhackers · December 15, 2025
  • Microsoft RasMan 0-day gets an unofficial patch and exploit — Theregister · December 12, 2025
  • Microsoft RasMan DoS 0-day gets unofficial patch — Theregister · December 12, 2025
  • New Windows RasMan zero-day flaw gets free, unofficial patches — Bleepingcomputer · December 12, 2025

CVSS v3.1 Breakdown