0.511 Medium
EPSS
Percentile
97.5%
A flaw was found in the Microsoft Windows Netlogon Remote Protocol (MS-NRPC), where it reuses a known, static, zero-value initialization vector (IV) in AES-CFB8 mode. This flaw allows an unauthenticated attacker to impersonate a domain-joined computer, including a domain controller, and possibly obtain domain administrator privileges. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
This flaw can be mitigated by using "server schannel = yes" in the smb.conf configuration file.
0.511 Medium
EPSS
Percentile
97.5%