SB2025090968 - Multiple vulnerabilities in Microsoft Windows Routing and Remote Access Service (RRAS)
Published: September 9, 2025
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 10 secuirty vulnerabilities.
1) Out-of-bounds read (CVE-ID: CVE-2025-53806)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
2) Integer overflow (CVE-ID: CVE-2025-54106)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to integer overflow in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger integer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
3) Heap-based buffer overflow (CVE-ID: CVE-2025-54113)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger a heap-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
4) Out-of-bounds read (CVE-ID: CVE-2025-55225)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
5) Out-of-bounds read (CVE-ID: CVE-2025-53797)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
6) Out-of-bounds read (CVE-ID: CVE-2025-53798)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
7) Out-of-bounds read (CVE-ID: CVE-2025-54095)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
8) Out-of-bounds read (CVE-ID: CVE-2025-54096)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
9) Out-of-bounds read (CVE-ID: CVE-2025-54097)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
10) Out-of-bounds read (CVE-ID: CVE-2025-53796)
The vulnerability allows a remote attacker to gain access to potentially sensitive information.
The vulnerability exists due to a boundary condition in Windows Routing and Remote Access Service (RRAS). A remote attacker can wait for a user to initiate a connection to a malicious server, trigger an out-of-bounds read error and read contents of memory on the system.
Remediation
Install update from vendor's website.
References
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-53806
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-54106
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-54113
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-55225
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-53797
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-53798
- https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-54095
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-54096
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-54097
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2025-53796