Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation

Vulnerability tracked as CVE-2025-49760 (CVSS score: 3.5), described by Microsoft as a Windows Storage spoofing bug. The vulnerability could be abused by an attacker to conduct spoofing attacks and impersonate a known server.