Microsoft AD CS Vulnerability Puts Domains at Risk

A newly uncovered flaw in Microsoft’s Active Directory Certificate Services (AD CS), CVE-2024-49019, exposes enterprise domains to significant risk. By exploiting misconfigured certificate templates, attackers can escalate privileges to Domain Administrator, gaining unrestricted control over an organization’s network.