CVE-2025-54097 — Windows RRAS Information‑Disclosure Vulnerability
An in‑depth feature for security teams and administrators
Summary
What it is: An out‑of‑bounds read in the Windows Routing and Remote Access Service (RRAS) that can cause RRAS to disclose contents of memory to a remote...
Microsoft has published an advisory for CVE-2025-54096, a vulnerability in the Windows Routing and Remote Access Service (RRAS) that allows an out-of-bounds read and can be abused by a remote attacker to disclose sensitive information over a network — a high-priority fix for any server running...