A critical spoofing vulnerability in Microsoft Defender for Identity (MDI) allows unauthenticated attackers to escalate privileges and gain unauthorized access to Active Directory environments. The vulnerability, designated as CVE-2025-26685, exploits the Lateral Movement Paths (LMPs) feature in the MDI sensor, enabling attackers to capture authentication credentials and potentially compromise entire organizational networks. Microsoft Defender Spoofing […]
The post Microsoft Defender Spoofing Vulnerability Allows Privilege Escalation and AD Access appeared first on Cyber Security News.
This article has been indexed from Cyber Security News