By Ravie Lakshmanan
Microsoft has revised the severity of a security vulnerability it originallyΒ patched in September 2022, upgrading it to "Critical" after it emerged that it could be exploited to achieve remote code execution.
Tracked asΒ CVE-2022-37958Β (CVSS score: 8.1), the flaw was previously described as anΒ information disclosure vulnerabilityΒ in SPNEGO Extended Negotiation (NEGOEX) Security Mechanism.
SPNEGO,