Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

May 22, 2025

A privilege escalation flaw has been demonstrated in Windows Server 2025 that makes it possible for attackers to compromise any user in Active Directory (AD).
“The attack exploits the delegated Managed Service Account (dMSA) feature that was introduced in Windows Server 2025, works with the default configuration, and is trivial to implement,” Akamai security researcher Yuval Gordon said in a

Source: Read More

Previous ArticleChinese Hackers Exploit Trimble Cityworks Flaw to Infiltrate U.S. Government Networks

Next Article Chinese Hackers Exploit Ivanti EPMM Bugs in Global Enterprise Network Attacks

Highlights

CVE-2025-32955 – Harden-Runner Docker Privilege Escalation Vulnerability

April 21, 2025

CVE ID : CVE-2025-32955

Published : April 21, 2025, 9:15 p.m. | 1 hour, 16 minutes ago

Description : Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. Versions from 0.12.0 to before 2.12.0 are vulnerable to `disable-sudo` bypass. Harden-Runner includes a policy option `disable-sudo` to prevent the GitHub Actions runner user from using sudo. This is implemented by removing the runner user from the sudoers file. However, this control can be bypassed as the runner user, being part of the docker group, can interact with the Docker daemon to launch privileged containers or access the host filesystem. This allows the attacker to regain root access or restore the sudoers file, effectively bypassing the restriction. This issue has been patched in version 2.12.0.

Severity: 6.0 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

I found the ultimate MacBook Air alternative for Windows users – and it’s priced well

Outdated IT help desks are holding businesses back – but there is a solution

Android’s latest update can force apps into dark mode – how to see it now

I tried the Google Pixel Watch 4 – and these key features made it feel indispensable

Building Cross-Platform Alerts with Laravel’s Notification Framework

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

How to install OpenPlatform — IoT platform

Basics of Digital Forensics

Basics of Digital Forensics

Top Linux Server Automation Tools: Simplifying System Administration

Rising from the Ashes: How AlmaLinux and Rocky Linux Redefined the Post-CentOS Landscape

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

CVE-2025-48388 – FreeScout Format String Vulnerability

5 Essential Tools for MVP Projects (in 2025)

Apache Tomcat and Camel Vulnerabilities Actively Exploited in The Wild

CVE-2024-13307 – Reales WP Real Estate WordPress Theme Unauthenticated File Deletion and Authorization Bypass Vulnerability

CVE-2025-32955 – Harden-Runner Docker Privilege Escalation Vulnerability

openVidu is a platform to develop WebRTC real-time applications

Secret Diary of a Billionaire AI Bot

CVE-2025-7763 – Open Redirect Vulnerability in thinkgem JeeSite Site Controller/SSO

Critical Windows Server 2025 dMSA Vulnerability Enables Active Directory Compromise

Related Posts