Pagine

Security - Kerberos and CVE-2022-37967

The November 8, 2022 Windows updates address security bypass and elevation of privilege vulnerabilities with Privilege Attribute Certificate (PAC) signatures. This security update addresses Kerberos vulnerabilities where an attacker could digitally alter PAC signatures, raising their privileges.

After this patch patch installation you must, to prevent DC problems, following 4 steps indicated in bottom article

KB5020805: How to manage Kerberos protocol changes related to CVE-2022-37967