Yesterday, for its May 2023 Patch Tuesday, Microsoft released a critical security update for Domain Controllers and Windows Server installations offering Active Directory Lightweight Directory Services. This vulnerability is known as CVE-2023-28283 and rated with CVSSv3.1 scores of 8.1/7.1. A remote code execution vulnerability exists in the Windows Lightweight Directory Access Protocol (LDAP). An adversary … Continue reading "An LDAP Remote Code Execution Vulnerability affects your Domain Controllers (CVE-2023-28283, Critical CVSSv3 8.1/7.1)"