Home

CVE-2026-25172

Description

Integer overflow or wraparound in Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to execute code over a network.

Risk Information

Base Score
8.0
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.067

Associated Vulnerability

VulnerabilityOS Platform
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 1809 for x86-based Systems (KB5078752)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows Server 2019 for x64-based Systems (KB5078752)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 1809 for x64-based Systems (KB5078752)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 21H2 for x86-based Systems (KB5078885)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 22H2 for x86-based Systems (KB5078885)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 21H2 for x64-based Systems (KB5078885)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 10 Version 22H2 for x64-based Systems (KB5078885)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11 Version 23H2 for arm64-based Systems (KB5078883)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11 Version 23H2 for x64-based Systems (KB5078883)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11, Version 26H1 for arm64-based Systems (KB5079466) (28000.1719)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11, Version 26H1 for x64-based Systems (KB5079466) (28000.1719)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Windows Server 2016 for x64-based Systems (KB5078938)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Windows 10 Version 1607 for x64-based Systems (KB5078938)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Windows 10 Version 1607 for x86-based Systems (KB5078938)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Windows Server 2012 for x64-based Systems (KB5078775) (ESU)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Windows Server 2012 R2 for x64-based Systems (KB5078774) (ESU)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Microsoft server operating system version 23H2 for x64-based Systems (KB5078734)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11, version 25H2 for x64-based Systems (KB5079473) (26200.8037)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11 Version 24H2 for arm64-based Systems (KB5079473) (26100.8037)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11, version 25H2 for arm64-based Systems (KB5079473) (26200.8037)Windows
Broadcast DVR Elevation of Privilege Vulnerability for Windows 11 Version 24H2 for x64-based Systems (KB5079473) (26100.8037)Windows
Windows Graphics Component Elevation of Privilege Vulnerability for Microsoft server operating system version 21H2 for x64-based Systems (KB5078766)Windows
Windows Print Spooler Remote Code Execution Vulnerability for Microsoft server operating system version 24H2 for x64-based Systems (KB5078740) (26100.32522)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-435772026-03 Cumulative Update for Windows 10 Version 1809 for x86-based Systems (KB5078752)
PATCH-435782026-03 Cumulative Update for Windows Server 2019 for x64-based Systems (KB5078752)
PATCH-435792026-03 Cumulative Update for Windows 10 Version 1809 for x64-based Systems (KB5078752)
PATCH-435802026-03 Cumulative Update for Windows 10 Version 21H2 for x86-based Systems (KB5078885)
PATCH-435812026-03 Cumulative Update for Windows 10 Version 22H2 for x86-based Systems (KB5078885) (ESU)
PATCH-435822026-03 Cumulative Update for Windows 10 Version 21H2 for x64-based Systems (KB5078885)
PATCH-435832026-03 Cumulative Update for Windows 10 Version 22H2 for x64-based Systems (KB5078885) (ESU)
PATCH-435842026-03 Cumulative Update for Windows 11 Version 23H2 for arm64-based Systems (KB5078883)
PATCH-435852026-03 Cumulative Update for Windows 11 Version 23H2 for x64-based Systems (KB5078883)
PATCH-435902026-03 Cumulative Update for Windows 11, Version 26H1 for arm64-based Systems (KB5079466) (28000.1719)
PATCH-435912026-03 Cumulative Update for Windows 11, Version 26H1 for x64-based Systems (KB5079466) (28000.1719)
PATCH-435742026-03 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5078938)
PATCH-435752026-03 Cumulative Update for Windows 10 Version 1607 for x64-based Systems (KB5078938)
PATCH-435762026-03 Cumulative Update for Windows 10 Version 1607 for x86-based Systems (KB5078938)
PATCH-435662026-03 Security Monthly Quality Rollup for Windows Server 2012 for x64-based Systems (KB5078775) (ESU)
PATCH-435652026-03 Security Monthly Quality Rollup for Windows Server 2012 R2 for x64-based Systems (KB5078774) (ESU)
PATCH-435722026-03 Cumulative Update for Microsoft server operating system version 23H2 for x64-based Systems (KB5078734)
PATCH-435862026-03 Cumulative Update for Windows 11, version 25H2 for x64-based Systems (KB5079473) (26200.8037)
PATCH-435872026-03 Cumulative Update for Windows 11 Version 24H2 for arm64-based Systems (KB5079473) (26100.8037)
PATCH-435882026-03 Cumulative Update for Windows 11, version 25H2 for arm64-based Systems (KB5079473) (26200.8037)
PATCH-435892026-03 Cumulative Update for Windows 11 Version 24H2 for x64-based Systems (KB5079473) (26100.8037)
PATCH-435712026-03 Cumulative Update for Microsoft server operating system version 21H2 for x64-based Systems (KB5078766)
PATCH-435732026-03 Cumulative Update for Microsoft server operating system version 24H2 for x64-based Systems (KB5078740) (26100.32522)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234