Analyst command view

MSRC Driver CVE Board

Latest-state board for filtered MSRC CVEs from 2020-01-01 to today, tuned for fast triage across module, CWE, release window, exploitation signal, and acknowledgement context.

Live snapshot

Last Sync

2026-05-20T07:39:30Z

Freshness

1 day(s) ago

Refresh Policy

24h baseline + release watch

Storage

Latest snapshot only

Rows In View

4933

Current result set after filter and search.

Exploited Flagged

4189

Rows with a non-empty exploitation signal.

Distinct CWE

162

Unique weakness classes in this view.

Modules

1528

Unique inferred driver or component labels.

Module

CWE

Rows

Sort

Actions

Reset

Top CWE

162 classes

Unspecified2109 CWE-416: Use After Free443 CWE-122: Heap-based Buffer Overflow354 CWE-125: Out-of-bounds Read269 CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')147 CWE-20: Improper Input Validation142 CWE-190: Integer Overflow or Wraparound127 CWE-476: NULL Pointer Dereference126

Top Modules

1528 modules

Windows Kernel220 Windows Routing and Remote Access Service (RRAS)111 Windows Hyper-V101 Win32k100 Windows Graphics Component89 Windows Print Spooler69 Remote Procedure Call Runtime67 Microsoft Message Queuing (MSMQ)63

Release Month

October 2025

5 CVE | last update 1 day(s) ago

Release 2025-10-01 Other / OOB Count 5

CVE	Module	CWE	Title Advisory text and compact technical context	Release	Exploited	Acknowledgement
CVE-2011-0433	Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a No latest release note	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	Heap-based buffer overflow in the linetoken function in afmparse.c in t1lib, as used in teTeX 3.0.x, GNOME evince, and possibly other products, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a DVI file containing a crafted Adobe Font Metrics (AFM) file, a different vulnerability than CVE-2010-2642. No CVSS vector published	2025-10-01	-	-
CVE-2017-6831	Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a No latest release note	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 and 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. CVSS vector: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2025-10-01	-	-
CVE-2017-6832	Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a No latest release note	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	Heap-based buffer overflow in the decodeBlock in MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a denial of service (crash) via a crafted file. CVSS vector: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2025-10-01	-	-
CVE-2017-6836	Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a No latest release note	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows remote attackers to cause a denial of service (crash) via a crafted file. CVSS vector: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2025-10-01	-	-
CVE-2017-6830	Heap-based buffer overflow in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a No latest release note	CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	Heap-based buffer overflow in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service CVSS vector: AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H	2025-10-01	-	-

Release Month

September 2025

45 CVE | last update 1 day(s) ago

Release 2025-09-24 Other / OOB Count 1

CVE	Module	CWE	Title Advisory text and compact technical context	Release	Exploited	Acknowledgement
CVE-2025-55322	OmniParser Exploitation Less Likely	CWE-1327: Binding to an Unrestricted IP Address	OmniParser Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C	2025-09-24	No	Reported By Aonan Guan Lei Wang

Release 2025-09-18 Other / OOB Count 3

CVE	Module	CWE	Title Advisory text and compact technical context	Release	Exploited	Acknowledgement
CVE-2025-59215	Windows Graphics Component Exploitation Less Likely	CWE-416: Use After Free	Windows Graphics Component Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-18	No	Reported By cyanbamboo
CVE-2025-59216	Windows Graphics Component Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Graphics Component Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-18	No	Reported By b2ahex
CVE-2025-59220	Windows Bluetooth Service Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Bluetooth Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-18	No	Reported By Hwiwon Lee (hwiwonl), SEC-agent team Jongseong Kim (nevul37), SEC-agent team Zhiniang Peng with HUST & R4nger with CyberKunLun

Release 2025-09-09 Patch Tuesday Count 41

CVE	Module	CWE	Title Advisory text and compact technical context	Release	Exploited	Acknowledgement
CVE-2025-49734	PowerShell Direct Exploitation Less Likely	CWE-923: Improper Restriction of Communication Channel to Intended Endpoints	PowerShell Direct Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By QWangWang
CVE-2025-53799	Windows Imaging Component Exploitation Unlikely	CWE-908: Use of Uninitialized Resource	Windows Imaging Component Information Disclosure Vulnerability CVSS vector: AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-09-09	No	Reported By Mark Riehm
CVE-2025-53801	Microsoft DWM Core Library Exploitation Less Likely	CWE-822: Untrusted Pointer Dereference	Microsoft DWM Core Library Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By namnp with Viettel Cyber Security
CVE-2025-55245	Xbox Gaming Services Exploitation Less Likely	CWE-59: Improper Link Resolution Before File Access ('Link Following')	Xbox Gaming Services Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Bighound
CVE-2025-55232	Microsoft High Performance Compute (HPC) Pack Exploitation Less Likely	CWE-502: Deserialization of Untrusted Data	Microsoft High Performance Compute (HPC) Pack Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Dennis Carlson with Abacus Group LLC
CVE-2025-54111	Windows UI XAML Phone DatePickerFlyout Exploitation Less Likely	CWE-416: Use After Free	Windows UI XAML Phone DatePickerFlyout Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Zhiniang Peng with HUST & R4nger with CyberKunLun
CVE-2025-54101	Windows SMB Client Exploitation Less Likely	CWE-416: Use After Free	Windows SMB Client Remote Code Execution Vulnerability CVSS vector: AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous
CVE-2025-54103	Windows Management Service Exploitation Less Likely	CWE-416: Use After Free	Windows Management Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Taewoo (Tae_ω02)
CVE-2025-54102	Windows Connected Devices Platform Service Exploitation Less Likely	CWE-416: Use After Free	Windows Connected Devices Platform Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Zhang WangJunJie, He YiSheng with Hillstone Network Security Research Institute
CVE-2025-53802	Windows Bluetooth Service Exploitation Less Likely	CWE-416: Use After Free	Windows Bluetooth Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Hwiwon Lee (hwiwonl), SEC-agent team Jongseong Kim (nevul37), SEC-agent team with ENKI WhiteHat
CVE-2025-54912	Windows BitLocker Exploitation Less Likely	CWE-416: Use After Free	Windows BitLocker Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Hussein Alrubaye with Microsoft
CVE-2025-54911	Windows BitLocker Exploitation Less Likely	CWE-416: Use After Free	Windows BitLocker Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Hussein Alrubaye with Microsoft
CVE-2025-54112	Microsoft Virtual Hard Disk Exploitation Unlikely	CWE-416: Use After Free	Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By her0m4nt pwnky
CVE-2025-54093	Windows TCP/IP Driver Exploitation More Likely	CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition	Windows TCP/IP Driver Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Angelboy (@scwuaptx) with DEVCORE
CVE-2025-55236	Graphics Kernel Exploitation Less Likely	CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition CWE-843: Access of Resource Using Incompatible Type ('Type Confusion')	Graphics Kernel Remote Code Execution Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By b2ahex
CVE-2025-54913	Windows UI XAML Maps MapControlSettings Exploitation Unlikely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows UI XAML Maps MapControlSettings Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Zhiniang Peng with HUST & R4nger with CyberKunLun
CVE-2025-55224	Windows Hyper-V Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Hyper-V Remote Code Execution Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By b2ahex cyanbamboo
CVE-2025-54115	Windows Hyper-V Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By hazard
CVE-2025-54092	Windows Hyper-V Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Chen Le Qi (@cplearns2h4ck) with STAR Labs SG Pte. Ltd.
CVE-2025-55228	Windows Graphics Component Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Graphics Component Remote Code Execution Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By b2ahex cyanbamboo
CVE-2025-54919	Windows Graphics Component Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Windows Graphics Component Remote Code Execution Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By cyanbamboo b2ahex
CVE-2025-53807	Windows Graphics Component Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Windows Graphics Component Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By cyanbamboo
CVE-2025-54114	Windows Connected Devices Platform Service Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-822: Untrusted Pointer Dereference	Windows Connected Devices Platform Service Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Zhang WangJunJie, He YiSheng with Hillstone Networks Security Research Institute
CVE-2025-54105	Microsoft Brokering File System Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Microsoft Brokering File System Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By ChenJian with Sea Security Orca Team
CVE-2025-55226	Graphics Kernel Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Graphics Kernel Remote Code Execution Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By b2ahex
CVE-2025-55223	DirectX Graphics Kernel Exploitation Less Likely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	DirectX Graphics Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By b2ahex cyanbamboo
CVE-2025-54108	Capability Access Management Service (camsvc) Exploitation Unlikely	CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') CWE-416: Use After Free	Capability Access Management Service (camsvc) Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By k0shl with Kunlun Lab Azure Yang with Kunlun Lab
CVE-2025-55234	Windows SMB Exploitation More Likely	CWE-287: Improper Authentication	Windows SMB Elevation of Privilege Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous
CVE-2025-54918	Windows NTLM Exploitation More Likely	CWE-287: Improper Authentication	Windows NTLM Elevation of Privilege Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Bryan De Houwer with Crimson7
CVE-2025-54116	Windows MultiPoint Services Exploitation Unlikely	CWE-284: Improper Access Control	Windows MultiPoint Services Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By BochengXiang(@Crispr) with FDU
CVE-2025-54098	Windows Hyper-V Exploitation More Likely	CWE-284: Improper Access Control	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Chen Le Qi (@cplearns2h4ck) with STAR Labs SG Pte. Ltd. Angelboy (@scwuaptx) with DEVCORE
CVE-2025-53809	Windows Local Security Authority Subsystem Service (LSASS) Exploitation Less Likely	CWE-20: Improper Input Validation	Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability CVSS vector: AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Tamas Jos (@skelsec)
CVE-2025-53803	Windows Kernel Memory Exploitation More Likely	CWE-209: Generation of Error Message Containing Sensitive Information	Windows Kernel Memory Information Disclosure Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-09-09	No	Reported By Aobo Wang Lewis Lee, Chunyang Han and Zhiniang Peng with HUST Anonymous
CVE-2025-53804	Windows Kernel-Mode Driver Exploitation More Likely	CWE-200: Exposure of Sensitive Information to an Unauthorized Actor	Windows Kernel-Mode Driver Information Disclosure Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-09-09	No	Reported By Lewis Lee Chunyang Han Zhiniang Peng
CVE-2025-54106	Windows Routing and Remote Access Service (RRAS) Exploitation Less Likely	CWE-190: Integer Overflow or Wraparound	Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous
CVE-2025-54110	Windows Kernel Exploitation More Likely	CWE-190: Integer Overflow or Wraparound	Windows Kernel Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By goodbyeselene
CVE-2025-54091	Windows Hyper-V Exploitation Less Likely	CWE-190: Integer Overflow or Wraparound CWE-122: Heap-based Buffer Overflow	Windows Hyper-V Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By ChengBin Wang with ZheJiang Guoli Security Technology
CVE-2025-54895	SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Exploitation Less Likely	CWE-190: Integer Overflow or Wraparound CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition	SPNEGO Extended Negotiation (NEGOEX) Security Mechanism Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Erik Egsgard with Field Effect
CVE-2025-53800	Windows Graphics Component Exploitation Less Likely	CWE-1419: Incorrect Initialization of Resource	Windows Graphics Component Elevation of Privilege Vulnerability CVSS vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous
CVE-2025-53806	Windows Routing and Remote Access Service (RRAS) Exploitation Unlikely	CWE-126: Buffer Over-read CWE-125: Out-of-bounds Read	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous
CVE-2025-53798	Windows Routing and Remote Access Service (RRAS) Exploitation Unlikely	CWE-126: Buffer Over-read	Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability CVSS vector: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C	2025-09-09	No	Reported By Anonymous