PT-2026-58428 · Microsoft · Routing/Remote Access Server

Published

2026-07-14

·

Updated

2026-07-14

·

CVE-2026-50451

CVSS v3.1

7.1

High

VectorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Windows Routing and Remote Access Service (RRAS) (affected versions not specified)
Description Missing authentication for a critical function in the Windows Routing and Remote Access Service (RRAS) allows an authorized attacker to elevate privileges locally, potentially affecting the system.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-50451

Affected Products

Routing/Remote Access Server