Microsoft has patched CVE-2026-50411, a remotely reachable denial-of-service vulnerability in Active Directory Federation Services that can be triggered by an unauthenticated attacker. The flaw carries a CVSS 3.1 base score of 7.5 and should move quickly through the patch queue wherever AD FS...