Microsoft has released an out-of-band patch for an Endpoint Configuration Manager vulnerability.
An attacker could exploit these vulnerabilities and potentially take over impacted systems.
The security update addressed Microsoft Endpoint Configuration Manager spoofing vulnerability CVE-2022-37972 (CVSS 7.5).
Microsoft Endpoint Configuration Manager is an on-premises management solution used to manage desktops, servers, and laptops.
According to KB15498768, the “update prevents any attempt at NTLM authentication for client push installation when the Allow connection fallback to NTLM option is disabled.”