CNNVD-202511-1060 Information
CNNVD ID
CNNVD-202511-1060
Related CVE
- CNNVD Published: 2025-11-11
Description (Chinese)
Microsoft Windows Routing and Remote Access Service是美国微软(Microsoft)公司的一种网络服务,用于实现网络路由、虚拟专用网络(VPN)和拨号连接等功能。 Microsoft Windows Routing and Remote Access Service (RRAS)存在安全漏洞。攻击者利用该漏洞可以提升权限。以下产品和版本受到影响:Windows Server 2025 (Server Core installation),Windows Server 2022, 23H2 Edition (Server Core installation),Windows Server 2025,Windows Server 2016,Windows Server 2016 (Server Core installation),Windows Server 2019,Windows Server 2019 (Server Core installation),Windows Server 2022,Windows Server 2022 (Server Core installation)。
Description (English)
Microsoft Windows Routing and Remote Access Service is a network service of Microsoft Corporation in the United States, which is used to perform network routing, virtual private network (VPN) and dial-up connectivity. Microsoft Windows Routing and Remote Access Service (RRAS) has a security gap. The attackers use this loophole to enhance their authority. The following products and versions have been affected: Windows Server 2025 (Server Centre integration), Windows Server 2022, 23H2 Evaluation (Server Corporation), Windows Server 2025, Windows Server 2016, Windows Server 2016 (Server Corporation), Windows Server 2019, Windows Server 2019 (Server Control), Windows Server 2022, Windows Server Service 2022, Windows Server Service 2022 (Server Corporation).
Hazard Level
Medium
Vulnerability Type
其他
Affected Vendor
微软
Published
2025-11-11
Last Modified
2026-02-24
References
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-60713
Patch
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-60713
Share on: