0patch
Our researchers have confirmed this issue on freshly installed fully updated Windows Server 2025 domain controller, using a regular domain user as attacker. Instant domain controller BSOD by any domain user.
SkelSec
Welp... reported an issue to msrc, demonstrating that kerberos TGS request with a malformed PA-FOR-X509-USER struct will crash the LSASS on any win2025 domain controller. Got the default response :/ Dunno how I feel abt this, but this was the first and last time I'm doing this.