CVE-2022-26925CISA KEV: Actively Exploited

Microsoft Windows LSA Spoofing Vulnerability

Published Jul 1, 2022·Updated Jul 1, 2022

Description

Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability where an attacker can coerce the domain controller to authenticate to the attacker using NTLM.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free