A newly discovered privilege escalation vulnerability in Windows Server 2025 exposes organizations to potential domain-wide compromises through the flawed handling of Delegated Managed Service Accounts (dMSA). Attackers can exploit this issue even with minimal permissions, highlighting the importance of permission management and timely patches. #WindowsServer2025 #dMSA #PrivilegeEscalation #Akamai #CyberThreats
Keypoints
- The vulnerability affects Windows Server 2025’s implementation of Delegated Managed Service Accounts (dMSA).
- Attackers can perform privilege escalation by exploiting the Kerberos authentication process during dMSA migration.
- The flaw allows any user with permissions to create dMSAs to fully compromise affected accounts, including domain administrators.
- Microsoft considers the issue moderate in severity, but there is currently no immediate fix available.
- Organizations are advised to restrict dMSA creation permissions and use provided scripts for vulnerability assessment.
Read More: https://thehackernews.com/2025/05/critical-windows-server-2025-dmsa.html