Zerologon Vulnerability, Windows Admins Advised to Patch Now

Leila Sharma

As part of the August 2020 Patch Tuesday security updates, Microsoft fixed a critical vulnerability in Windows Server systems, dubbed “Zerologon” and  tracked as CVE-2020-1472, “Netlogon Elevation of Privilege Vulnerability”, with a criticality score of 10/10. This vulnerability is being actively exploited and allows malicious actors to elevate their privileges to domain level administrator and take over a domain. Microsoft is addressing this vulnerability in a phased two part rollout. Windows admins are advised to update asap. 

Resources: