CVE-2025-65176

Name of the Vulnerable Software and Affected Versions Dynatrace OneAgent versions prior to 1.325.47

Description An issue exists in Dynatrace OneAgent where, when attempting to access a remote network share and receiving a "STATUS LOGON FAILURE" error, the agent retrieves all user tokens from the machine and repeatedly attempts network share access while impersonating those users. This can allow an unprivileged attacker with system access to perform NTLM relay attacks.

Recommendations Update Dynatrace OneAgent to version 1.325.47 or later.