Microsoft Reclassifies SPNEGO Extended Negotiation Security Vulnerability as 'Critical'
Microsoft has revised the severity of a security vulnerability it originally patched in September 2022, upgrading it to "Critical" after it emerged that it could be exploited to achieve remote code execution. ... "This vulnerability is a pre-authentication remote code execution vulnerability impacting a wide range of protocols," IBM said this week. CVEs: CVE-2017-0144, CVE-2022-37958 [View Article](https://thehackernews.com/2022/12/microsoft-reclassifies-spnego-extended.html)