
Active Directory Domain Services Elevation of Privilege Vulnerability (CVE-2025-21293)
Introduction In September of 2024 while on a customer assigment I encountered the “Network Configuration Operators” group, a so called builtin group of Active Directory (default). As I had never ...