Critical Windows Server 2025 dMSA Vulnerability Enables Active

A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory. "The attack exploits the delegated Managed Service Account (dMSA) feature," researcher Yuval Gordon said.