CVE-2024-49086
published 2024-12-12CVE-2024-49086: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
high8.8CVSS 3.1
AVNACLPRNUIRSUCHIHAH
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | windows_server_2008 | — | — |
| microsoft | windows_server_2008_r2_service_pack_1 | >= 6.1.7601.0 < 6.1.7601.27467 | 6.1.7601.27467 |
| microsoft | windows_server_2008_service_pack_2 | >= 6.0.6003.0 < 6.0.6003.23016 | 6.0.6003.23016 |
| microsoft | windows_server_2012 | — | — |
| microsoft | windows_server_2012 | >= 6.2.9200.0 < 6.2.9200.25222 | 6.2.9200.25222 |
| microsoft | windows_server_2012_r2 | >= 6.3.9600.0 < 6.3.9600.22318 | 6.3.9600.22318 |
| microsoft | windows_server_2016 | < 10.0.14393.7606 | 10.0.14393.7606 |
| microsoft | windows_server_2016 | >= 10.0.14393.0 < 10.0.14393.7606 | 10.0.14393.7606 |
| microsoft | windows_server_2019 | < 10.0.17763.6659 | 10.0.17763.6659 |
| microsoft | windows_server_2019 | >= 10.0.17763.0 < 10.0.17763.6659 | 10.0.17763.6659 |
| microsoft | windows_server_2022 | < 10.0.20348.2966 | 10.0.20348.2966 |
| microsoft | windows_server_2022 | >= 10.0.20348.0 < 10.0.20348.2966 | 10.0.20348.2966 |
| microsoft | windows_server_2022_23h2 | < 10.0.25398.1308 | 10.0.25398.1308 |
| microsoft | windows_server_2025 | < 10.0.26100.2605 | 10.0.26100.2605 |
| microsoft | windows_server_2025 | >= 10.0.26100.0 < 10.0.26100.2605 | 10.0.26100.2605 |
| msrc | windows_server_2008_for_32-bit_systems_service_pack_2 | — | — |
| msrc | windows_server_2008_for_x64-based_systems_service_pack_2 | — | — |
| msrc | windows_server_2008_r2_for_x64-based_systems_service_pack_1 | — | — |
| msrc | windows_server_2012 | — | — |
| msrc | windows_server_2012_r2 | — | — |
| msrc | windows_server_2016 | — | — |
| msrc | windows_server_2019 | — | — |
| msrc | windows_server_2022 | — | — |
| msrc | windows_server_2022_23h2_edition | — | — |
| msrc | windows_server_2025 | — | — |
GHSA
GHSA-vc4g-w5wr-85hv: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
ghsa_unreviewed·2024-12-12
CVE-2024-49086 [HIGH] CWE-122 GHSA-vc4g-w5wr-85hv: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Microsoft
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
vendor_msrc·2024-12-10·CVSS 8.8
CVE-2024-49086 [HIGH] CWE-122 Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability
FAQ: According to the CVSS metric, the attack vector is network (AV:N) and the user interaction is required (UI:R). What is the target context of the remote code execution?
This attack requires an admin user on the client to connect to a malicious server, and that could allow the attacker to gain code execution on the client.
FAQ: How could an attacker exploit this vulnerability?
An attacker could exploit this vulnerability by tricking a user into sending a request to a malicious server. This could result in the server returning malicious data that might cause arbitrary code execution on the user's system.
Windows Routing and Remote Access Service (RRAS): Windows Routing and Remote Access Service (RRAS)
No detection rules found.
No public exploits indexed.
2024-12-12
Published