Microsoft has released an out-of-band hotpatch update, designated KB5084597, to address three critical remote code execution vulnerabilities affecting the Windows Routing and Remote Access Service (RRAS) management tool. This emergency update was made available on March 13, 2026, specifically targeting Windows 11 Enterprise devices enrolled in the hotpatch program.
The vulnerabilities, tracked as CVE-2026-25172, CVE-2026-25173, and CVE-2026-26111, pose significant risks to users, prompting Microsoft’s swift action. The hotpatch update allows for in-memory patching of running processes, enabling immediate application of the fixes without requiring a system restart.
This update applies to Windows 11 versions 24H2 and 25H2, as well as Windows 11 Enterprise LTSC 2024. KB5084597 is cumulative and includes all fixes from the March 2026 security update, ensuring that users receive comprehensive protection against these vulnerabilities.
Only devices enrolled in the hotpatch update program and managed through Windows Autopatch will receive this specific update. For devices not enrolled in the program, the necessary fixes were provided through the standard March 10 Patch Tuesday update.
Microsoft emphasized that this approach is designed for mission-critical devices where unplanned reboots are not practical. As a result, the hotpatch mechanism allows for seamless updates, minimizing disruption to users.
In a statement, Microsoft noted that “no action is required for PCs receiving standard Windows updates,” indicating a streamlined process for most users. This rapid response to the RRAS vulnerabilities demonstrates a commitment to keeping Windows users safe from potential threats.
As cybersecurity threats continue to evolve, timely updates such as this one are crucial for maintaining the integrity and security of operating systems. Microsoft’s proactive measures reflect an ongoing effort to address vulnerabilities and protect its user base.
Details remain unconfirmed regarding the extent of the vulnerabilities’ exploitation prior to the update’s release, but the urgency of the situation underscores the importance of regular software updates.