AD CS ESC15 — EKUwu / V1 schema injection TL;DR: Inject arbitrary Application Policies into V1-schema certificate templates to bypass EKU restrictions (CVE-2024-49019). Stub — to be filled in. What it is TODO Preconditions / where it applies TODO Technique TODO Detection and defence TODO References https://trustedsec.com/blog/ekuwu-not-just-another-ad-cs-esc