CVE-2025-21203: Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

According to the CVSS metric, user interaction is required (UI:R). What interaction would the user have to do?

This attack requires an admin user on the client to connect to a malicious server and then take specific actions which could result in information disclosure.