CVE-2024-20692: Microsoft Local Security Authority Subsystem Service Information Disclosure Vulnerability

How could an attacker exploit this vulnerability?

An attacker could exploit the vulnerability by convincing, or waiting for, a user to connect to an Active Directory Domain Controller and then stealing network secrets. When the vulnerability is successfully exploited this could allow the attacker to retrieve sensitive data in plain-text which could be exploited for further attacks.