Microsoft will soon by default block vulnerable connections on devices that could be used to exploit the Zerologon flaw. A successful exploit of the flaw allows unauthenticated attackers with network access to domain controllers to completely compromise all Active Directory identity services. Microsoft said it will enable domain controller enforcement mode by default, a measure that would help mitigate the threat. The flaw, with a critical-severity CVSS score of 10 out of 10, was first addressed in Microsoft s August 2020 security updates.
Source: https://threatpost.com/microsoft-implements-windows-zerologon-flaw-enforcement-mode/163104/