Lucene search
K

142 matches found

Talos Blog
Talos Blog
added 2 days ago5 views

Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilities

Microsoft has released its monthly security update for July 2026, which includes 622 vulnerabilities affecting a range of products, including 57 that Microsoft marked as "critical." Microsoft notes that two of the vulnerabilities disclosed this month have been exploited in the wild. CVE-2026-5615...

9.9CVSS7.6AI score0.1972EPSS
Exploits0
NVD
NVD
added 2 days ago2 views

CVE-2026-50695

Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network...

7.5CVSS0.00813EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2 days ago3 views

CVE-2026-50355 Windows Active Directory Federation Services Denial of Service Vulnerability

...

7.5CVSS6.1AI score0.01098EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2 days ago4 views

CVE-2026-50368 Windows Active Directory Federation Services Denial of Service Vulnerability

...

7.5CVSS6.1AI score0.00797EPSS
Exploits0References1
CVE
CVE
added 2 days ago10 views

CVE-2026-54983

The CVE-2026-54983 entry concerns a stack-based buffer overflow in Active Directory Federation Services (AD FS) that allows an unauthenticated, network-based attacker to trigger a denial of service. The authoritative sources describe the vulnerability as enabling network-ported DoS without requir...

7.5CVSS6.2AI score0.00797EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/19 9:31 p.m.6 views

EUVD-2025-199598

Keycloak LDAP User Federation provider enables admin-triggered untrusted Java deserialization...

5.5CVSS6.2AI score0.00408EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/14 6:30 p.m.8 views

EUVD-2025-34371

Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...

6.2CVSS8.8AI score0.0055EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/10/14 2:0 p.m.6 views

Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability

Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...

6.2CVSS6.5AI score0.0055EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-9838

Malware in sbrugna...

5.4CVSS5.4AI score0.01548EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-11948

Malware in sbrugna...

6.1CVSS6.5AI score0.01784EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2019-1710

Malware in sbrugna...

6.8CVSS7.2AI score0.01821EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-7860

Malware in sbrugna...

7.8CVSS7.5AI score0.00399EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-0410

Malware in sbrugna...

5.3CVSS6.3AI score0.02059EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8594

Malware in sbrugna...

8.6CVSS8.8AI score0.08026EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 4:6 p.m.7 views

CVE-2020-1055

A cross-site-scripting XSS vulnerability exists when Active Directory Federation Services ADFS does not properly sanitize user inputs, aka 'Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability'...

6.1CVSS5.8AI score0.01784EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:14 a.m.7 views

CVE-2019-1273

A cross-site-scripting XSS vulnerability exists when Active Directory Federation Services ADFS does not properly sanitize certain error messages, aka 'Active Directory Federation Services XSS Vulnerability'...

5.4CVSS5.5AI score0.01548EPSS
Exploits0References1
OSV
OSV
added 2025/01/14 6:15 p.m.3 views

CVE-2025-21193

Active Directory Federation Server Spoofing Vulnerability...

6.5CVSS5.8AI score0.00724EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2024/02/29 3:21 p.m.47 views

New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems

Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks. Silver SAML "enables the exploitation of SAML to launch attacks from an identity provider like Entra ID against...

7.5AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/01/03 12:0 a.m.19 views

ADFS Relying Party Trusts Disclosure

Microsoft Active Directory Federation Services ADFS is a very popular Single Sign On SSO feature offering identity federation to organizations. An ADFS server can be configured to show a login page to connect to corporate applications directly from this Identity Provider IdP. When enabled, this w...

7.1AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/17 12:0 a.m.5 views

The vulnerability of the Active Directory Federation Services (ADFS) for Windows operating systems allows a hacker to bypass existing security restrictions.

The vulnerability of the Active Directory Federation Services ADFS for Windows operating systems is related to security configuration errors. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...

6.8CVSS7.1AI score0.01034EPSS
Exploits0References2
Rows per page
Query Builder