Microsoft has announced a hardening plan for Windows Deployment Services (WDS) after the discovery of a critical remote code execution vulnerability, CVE-2026-0386, that compromises hands‑free automated installations. The vulnerability exposes Unattend.xml answer files over an unauthenticated channel, allowing an attacker on the same network segment to intercept or tamper with deployment configurations. For organizations that depend on network-based provisioning to