On July 8, 2025, Microsoft released KB 5062572 (applicable to Windows Server 2008 R2 through 2022 domain controllers) to address CVE‑2025‑49716 and enhance access verification in Netlogon RPC.
- Potentially affected environments: Samba servers joined to AD and using certain backends such as idmap_admay experience authentication or identity mapping failures after the update.
- QNAP NAS status: QNAP NAS systems are not affected by this change under default settings, and it is safe to apply the update.
For more details, please refer to the official Microsoft documentation:
https://support.microsoft.com/en-us/topic/july-8-2025-kb-5062572-os-build-20348-3932-d78a2b2a-1ce8-45ee-85a0-e51a897ec67f