CVE-2022-26925 — Microsoft Windows LSA Spoofing Vulnerability
2022-07-01 • CISA Known Exploited Vulnerability
[event] Microsoft Windows Local Security Authority (LSA) contains a spoofing vulnerability where an attacker can coerce the domain controller to authenticate to the attacker using NTLM.
> AFFECTED SOFTWARE
| Field | Value |
|---|---|
| Vendor | Microsoft |
| Product | Windows |
| CWE | CWE-306 |
| CVE ID | CVE-2022-26925 |
| Date Added | 2022-07-01 |
| Due Date | 2022-07-22 |
| Ransomware Campaign | Unknown |
> MITIGATION
Apply remediation actions outlined in CISA guidance [https://www.cisa.gov/guidance-applying-june-microsoft-patch].
Due Date: 2022-07-22