CVE-2020-1472

Microsoft's Netlogon Remote Protocol (MS-NRPC) contains a privilege escalation vulnerability when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller. An attacker who successfully exploits the vulnerability could run a specially crafted application on a device on the network. The vulnerability is also known under the moniker of Zerologon. Vendor/Product: Microsoft Netlogon. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.