Microsoft’s Security Response Center lists CVE-2025-54095 as an out-of-bounds read in the Windows Routing and Remote Access Service (RRAS) that can disclose memory contents to a remote attacker over the network.
Background / Overview
Routing and Remote Access Service (RRAS) is a long‑standing...