There has been a proof-of-concept (PoC) exploit for the CVE-2024-49113/CVE-2024-49112 vulnerabilities (the latter being rated critical). This vulnerability can crash any unpatched Windows Servers with Internet connectivity. This PoC was devised by SafeBreach Labs and you can find the details and steps by following the link. It’s important to apply the December 2024 patches released by Microsoft to mitigate risk.
NIST’s Analysis Page: LINK
Microsoft’s Security Update Page: LINK
