3 matches found
CVE-2019-0975
A security feature bypass vulnerability exists when Active Directory Federation Services ADFS improperly updates its list of banned IP addresses. To exploit this vulnerability, an attacker would have to convince a victim ADFS administrator to update the list of banned IP addresses. This security...
Security feature bypass
A security feature bypass vulnerability exists in Active Directory Federation Services ADFS which could allow an attacker to bypass the extranet lockout policy.To exploit this vulnerability, an attacker could run a specially crafted application, which would allow an attacker to launch a password...
CVE-2019-0975
CVE-2019-0975 describes a security feature bypass in Active Directory Federation Services (ADFS) due to improper updates to the list of banned IP addresses. Exploitation requires a victim ADFS administrator to perform the list-update action, enabling an attacker to bypass security checks. The ass...