URL has been copied successfully!
Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise


Tags: , , , , ,

A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory (AD).”The attack exploits the delegated Managed Service Account (dMSA) feature that was introduced in Windows Server 2025, works with the default configuration, and is trivial to implement,” Akamai security researcher Yuval Gordon said in a

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/05/critical-windows-server-2025-dmsa.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Microsoft’s November 2024 Patch Tuesday Addresses 87 CVEs (CVE-2024-43451, CVE-2024-49039)
  2. Top 7 zero-day exploitation trends of 2024
  3. Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335)
  4. Microsoft’s May 2025 Patch Tuesday Addresses 71 CVEs (CVE-2025-32701, CVE-2025-32706, CVE-2025-30400)