A critical zero-click remote code execution (RCE) flaw in Windows Netlogon, tracked as CVE-2026-41089, is now being actively exploited in the wild, dramatically raising the risk profile for any unpatched Windows Server environment running domain controllers. The flaw enables unauthenticated remote attackers to execute arbitrary code with SYSTEM‑level privileges simply by sending specially crafted Netlogon […]
The post Windows Netlogon 0-Click RCE Flaw Exploited in the Wild appeared first on Cyber Security News.