Deserialize
CVE-2025-53772 IIS WebDeploy RCE
What IIS Web Deploy is and how it is deployed; the root cause of the unsafe deserialization chain using GZip + Base64 on the msdeploy.axd and msdeployagentservice path, data flow, PoC (Proof of Concept) request examples, monitoring methods, and permanent mitigation recommendations.
Batuhan Er•Security Researcher
September 1, 20257 min read
Read more →