Name of the Vulnerable Software and Affected Versions:

SMB Server (affected versions not specified)

Description:

SMB Server may be susceptible to relay attacks depending on the configuration. Successful exploitation of this issue could allow an attacker to perform relay attacks and elevate privileges. The SMB Server supports mechanisms for hardening against relay attacks, including SMB Server signing and SMB Server Extended Protection for Authentication (EPA). Microsoft is releasing this information to provide customers with audit capabilities to assess their environment and identify potential device or software incompatibility issues before deploying SMB Server hardening measures.

Recommendations:

Assess your environment by utilizing the audit capabilities exposed in the September 2025 security updates.

Adopt appropriate SMB Server hardening measures.