A new exploit has been successfully re-engineered from August 2020 “Patch Tuesday” update fixes.  While many corporate & home users are already protected — it would be important for those who lag behind to get updated at least to AUG-2020 current levels for security updates.


CISA is aware of publicly available exploit code for CVE-2020-1472, an elevation of privilege vulnerability in Microsoft’s Netlogon. Although Microsoft provided patches for CVE-2020-1472 in August 2020, unpatched systems will be an attractive target for malicious actors. Attackers could exploit this vulnerability to obtain domain administrator access.  CISA encourages users and administrators to review Microsoft’s August Security Advisory for CVE-2020-1472 and Article for more information and apply the necessary updates.