Lou Scicchitano

**Name of the Vulnerable Software and Affected Versions** Microsoft Active Directory Certificate Services (affected versions not specified) **Description** An elevation-of-privilege issue exists in Microsoft Active Directory Certificate Services. Exploitation of this issue may allow an attacker to elevate their privileges within a system. The issue is related to flaws in the authentication procedure and specifically impacts certificate templates with broad permissions. This vulnerability, also known as EKUwu or ESC15, has been actively exploited. While the exact number of affected devices is not specified, the vulnerability poses a risk to domain control. The issue involves the use of version 1 certificate templates. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.