CNNVD-202508-1180 Information

Aug 12, 2025 cve

CNNVD ID

CNNVD-202508-1180

CVE-2025-50163

  • CNNVD Published: 2025-08-12

Description (Chinese)

Microsoft Windows Routing and Remote Access Service是美国微软(Microsoft)公司的一种网络服务,用于实现网络路由、虚拟专用网络(VPN)和拨号连接等功能。 Microsoft Windows Routing and Remote Access Service (RRAS)存在安全漏洞。攻击者利用该漏洞可以执行代码。以下产品和版本受到影响:Windows Server 2016 (Server Core installation),Windows Server 2008 for 32-bit Systems Service Pack 2,Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation),Windows Server 2008 for x64-based Systems Service Pack 2,Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation),Windows Server 2008 R2 for x64-based Systems Service Pack 1,Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation),Windows Server 2012,Windows Server 2012 (Server Core installation),Windows Server 2012 R2,Windows Server 2012 R2 (Server Core installation),Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation),Windows Server 2025 (Server Core installation),Windows Server 2022, 23H2 Edition (Server Core installation),Windows Server 2025,Windows Server 2016。

Description (English)

Microsoft Windows Routing and Remote Access Service is a network service of Microsoft Corporation in the United States, which is used to perform network routing, virtual private network (VPN) and dial-up connectivity. Microsoft Windows Routing and Remote Access Service (RRAS) has a security gap. The attackers used the loophole to enforce the code. The following products and versions are affected: Windows Service 2016 (Server Corporation), Windows Service 2008 for 32-bit Systems Service Pack 2, Windows Service 2008 for 32-bit Systems Service Pack 2 (Server Services Service Service Pack 2), Windows Service 2008 for x-64-Systems Pack 2, Windows Service 2008 Service Service Service Service Service Service Service Service Service, Service Service 2008 (Wow), Service Service 2008 for x-service Service Standard 2, Service Service Service Service 2008 for x 64-service Service Service Service, (Sier Service Officer 2), Service Service Service Building 2 (Saver Service Service Service), Service Service Services in Service Services, in World Service 20, in Service Services (Wow), In Service Service Services, in Service Services, in Service Services, in Service Services, in Service Services, in Service Services, in Service Services Division 20, and In Service Services, in Service Services Divisions 2012 (WSW)

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

微软

Published

2025-08-12

Last Modified

2026-02-24

References

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50163

Patch

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-50163

Share on: