1095 matches found
Microsoft Patch Tuesday for July 2026 — Snort rules and prominent vulnerabilities
Microsoft has released its monthly security update for July 2026, which includes 622 vulnerabilities affecting a range of products, including 57 that Microsoft marked as "critical." Microsoft notes that two of the vulnerabilities disclosed this month have been exploited in the wild. CVE-2026-5615...
CVE-2026-58529
Out-of-bounds read in Active Directory Federation Services AD FS allows an authorized attacker to disclose information over a network...
CVE-2026-50304
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network...
CVE-2026-56155
Insufficient granularity of access control in Active Directory Federation Services AD FS allows an authorized attacker to elevate privileges locally...
CVE-2026-50695
Stack-based buffer overflow in Active Directory Federation Services allows an unauthorized attacker to deny service over a network...
CVE-2026-58529
Summary (CVE-2026-58529): Out-of-bounds read in Active Directory Federation Services (AD FS) can disclose information over a network to an authorized attacker. The entry is supported by multiple connected sources (NVD/NCSC/CIRCL/NVDC/MSRC) confirming the vulnerability and its description. The CVS...
CVE-2026-58529 Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability
...
CVE-2026-50684
CVE-2026-50684 (AD FS spoofing) : The vulnerability is described as improper neutralization of input during web page generation (XSS) in Active Directory Federation Services, enabling an authorized attacker to perform spoofing over the network. The CVSS v3.1 base metrics indicate a Medium severit...
CVE-2026-50684 Active Directory Federation Server Spoofing Vulnerability
...
CVE-2026-50647 Active Directory Federation Server Denial of Service Vulnerability
...
CVE-2026-50647
CVE-2026-50647: AD FS denial-of-service due to an infinite loop in AD FS. Public sources (NVD/EUVD/NCSC, CIRCL sighting, MSRC) confirm a network-exploitable condition causing service disruption; no exploitation details provided in the docs. Microsoft has released updates addressing the vulnerabil...
CVE-2026-50411 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50411 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50411
CVE-2026-50411 affects Active Directory Federation Services (AD FS) and is described as a stack-based buffer overflow that enables a remote attacker to cause a denial of service over the network. Public references in the connected documents confirm the DoS impact and Microsoft has released update...
CVE-2026-50355 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50355
CVE-2026-50355 is a vulnerability in Active Directory Federation Services (AD FS) described as a stack-based buffer overflow that enables a remote, unauthenticated attacker to cause a denial of service over the network. The CVSS v3.1 base score is 7.5 (Network, Low attack complexity, No privilege...
CVE-2026-50355 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50324 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50324 Windows Active Directory Federation Services Denial of Service Vulnerability
...
CVE-2026-50324
CVE-2026-50324 affects Windows Active Directory Federation Services (AD FS). The description identifies a loop condition described as an infinite loop that enables a network-based Denial of Service against AD FS. The CVE entry lists a Medium severity (AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H) with Ava...