142 matches found
Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for July 2026, which includes 622 vulnerabilities affecting a range of products, including 57 that Microsoft marked as "critical." Microsoft notes that two of the vulnerabilities disclosed this month have been exploited in the wild. CVE-2026-5615...
CVE-2026-50695
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network...
CVE-2026-50355 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50368 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-54983
The CVE-2026-54983 entry concerns a stack-based buffer overflow in Active Directory Federation Services (AD FS) that allows an unauthenticated, network-based attacker to trigger a denial of service. The authoritative sources describe the vulnerability as enabling network-ported DoS without requir...
EUVD-2025-199598
Keycloak LDAP User Federation provider enables admin-triggered untrusted Java deserialization...
EUVD-2025-34371
Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...
Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability
Insertion of sensitive information into log file in Active Directory Federation Services allows an unauthorized attacker to disclose information locally...
EUVD-2019-9838
Malware in sbrugna...
EUVD-2020-11948
Malware in sbrugna...
EUVD-2019-1710
Malware in sbrugna...
EUVD-2015-7860
Malware in sbrugna...
EUVD-2017-0410
Malware in sbrugna...
EUVD-2018-8594
Malware in sbrugna...
CVE-2020-1055
A cross-site-scripting XSS vulnerability exists when Active Directory Federation Services ADFS does not properly sanitize user inputs, aka 'Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability'...
CVE-2019-1273
A cross-site-scripting XSS vulnerability exists when Active Directory Federation Services ADFS does not properly sanitize certain error messages, aka 'Active Directory Federation Services XSS Vulnerability'...
CVE-2025-21193
Active Directory Federation Server Spoofing Vulnerability...
New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems
Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks. Silver SAML "enables the exploitation of SAML to launch attacks from an identity provider like Entra ID against...
ADFS Relying Party Trusts Disclosure
Microsoft Active Directory Federation Services ADFS is a very popular Single Sign On SSO feature offering identity federation to organizations. An ADFS server can be configured to show a login page to connect to corporate applications directly from this Identity Provider IdP. When enabled, this w...
The vulnerability of the Active Directory Federation Services (ADFS) for Windows operating systems allows a hacker to bypass existing security restrictions.
The vulnerability of the Active Directory Federation Services ADFS for Windows operating systems is related to security configuration errors. Exploiting this vulnerability could allow a malicious actor to circumvent existing security restrictions remotely...