CVE-2022-26925

⚠ KEVEPSS 37.4%

Microsoft Windows LSA Spoofing Vulnerability

Added to CISA KEV: 7/1/2022

Description

Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability where an attacker can coerce the domain controller to authenticate to the attacker using NTLM.

Affected packages (0)

No package mapping in OSV.