Microsoft has released an emegency hotpatch update against a critical network security vulnerability under KB5084597 for Windows 11 25H2 and 24H2.
Microsoft today has released a new emergency update for Windows 11 LTSC 2024. The new update under KB5084597 is a hotpatch out-of-band release as it is meant to fix critical network-related security vulnerabilites. These are tracked under IDs CVE-2026-25172, CVE-2026-25173, and CVE-2026-26111, and they are remote code execution (RCE) flaws affecting the Windows Routing and Remote Access Service (RRAS) management tool.
The description of the vulnerability on MSRC’s website is as follows:
“Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability: Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.”
If you are not familiar, Routing and Remote Access Service (RRAS) is a Windows feature that provides secure remote connectivity and routing functions. It allows organizations and enterprises to set up VPNs, dial-up access, and site-to-site connections, effectively acting as a software-based router. RRAS supports multiprotocol routing, NAT, and dynamic routing with protocols like BGP, enabling communication between LANs, WANs, and cloud networks, among other such functions.
The changelog for the KB5084597 update says:
- [Networking] Fixed: This update addresses a security issue in the Windows Routing and Remote Access Service (RRAS) management tool. If you connect to a malicious remote server, an attacker could disrupt the tool or run code on your device.
You can find the support article here on Microsoft’s official site. The update will be downloaded and installed automatically on hotpatch-enabled devices, the company notes.