CVE-2025-49676 | Microsoft Windows Server 2008 R2 SP1 up to Server 2022 23H2 Routing/Remote Access Service heap-based overflow
A vulnerability, which was classified as critical, has been found in Microsoft Windows. Affected by this issue is some unknown functionality of the component Routing/Remote Access Service. The manipulation leads to heap-based buffer overflow.
This vulnerability is handled as CVE-2025-49676. The attack may be launched remotely. There is no exploit available.
It is recommended to apply a patch to fix this issue.