Microsoft releases out-of-band update for Windows 11 RRAS vulnerabilities

Bleeping Computer reports that Microsoft has issued an out-of-band update to address critical security vulnerabilities affecting Windows 11 Enterprise devices that utilize hotpatch updates. This update specifically targets issues within the Windows Routing and Remote Access Service (RRAS) management tool.

The vulnerabilities, tracked as CVE-2026-25172, CVE-2026-25173, and CVE-2026-26111, could allow remote code execution if a user connects to a malicious server. These flaws were initially patched during the March 2026 Patch Tuesday updates. However, the out-of-band hotpatch update, KB5084597, is designed for Windows 11 versions 25H2, 24H2, and Enterprise LTSC 2024. It is intended for enterprise clients managed via Windows Autopatch, enabling fixes to be applied in memory without requiring a system reboot, which is crucial for mission-critical systems.

Source: Bleeping Computer