KB5071546: Windows 10 version 21H2 / Windows 10 Version 22H2 Security Update (December 2025)

The remote Windows host is missing security update 5071546. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Out-of-bounds read ...

KB5071543: Windows 10 Version 1607 / Windows Server 2016 Security Update (December 2025)

The remote Windows host is missing security update 5071543. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Heap-based buffer...

CVE-2025-49669 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2025-33066 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2024-49086 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2024-43611

CVE-2024-43611 affects Windows Routing and Remote Access Service (RRAS). The vulnerability in RRAS enables Remote Code Execution with an attack vector over the network; CVSS v3.1 base score is 8.8 (High). The NCSC page lists CVE-2024-43611 under RRAS items with an 8.80/Execute Random Code rating,...

CVE-2024-43592

CVE-2024-43592 is a Windows RRAS remote code execution vulnerability. The connected sources indicate it affects Windows RRAS with an attack vector over the network, requiring low privileges and no user interaction, yielding a high impact on confidentiality, integrity, and availability (C/H/I/A). ...

CVE-2024-43592 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2024-38265

CVE-2024-38265 is a Windows RRAS remote code execution vulnerability. The connected documents confirm RRAS is affected and indicate this CVE can lead to remote code execution over the network, with a highly elevated impact (NCSC lists 8.80, Execute random code). The initial metrics show CVSSv3.1:...

CVE-2024-38154 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2024-30095 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

CVE-2023-35365 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to launch attacks execute attacks that can lead to the following categories of damage: Denial-of-Service DoS. Circumvention of security measure Remote code execution Administrator/Root rights Remote...