Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft active directory authentication library vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2019-1258
An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens. This vulnerability allows an authenticated malicious user to perform actions in context of another user. The authenticated atta...
Microsoft Active Directory Authentication Library 5.0.3
Microsoft Active Directory Authentication Library 5.0.2
Microsoft Active Directory Authentication Library 5.0.1
Microsoft Active Directory Authentication Library 5.0.0
Microsoft Active Directory Authentication Library
Microsoft Nuget 5.2.0
4.3
CVSSv2
CVE-2016-7191
The Microsoft Azure Active Directory Passport (aka Passport-Azure-AD) library 1.x prior to 1.4.6 and 2.x prior to 2.0.1 for Node.js does not recognize the validateIssuer setting, which allows remote malicious users to bypass authentication via a crafted token.
Microsoft Azure Active Directory Passport 1.0.0
Microsoft Azure Active Directory Passport 1.1.0
Microsoft Azure Active Directory Passport 1.3.5
Microsoft Azure Active Directory Passport 1.3.6
Microsoft Azure Active Directory Passport 2.0.0
Microsoft Azure Active Directory Passport 1.3.3
Microsoft Azure Active Directory Passport 1.3.4
Microsoft Azure Active Directory Passport 1.4.4
Microsoft Azure Active Directory Passport 1.4.5
Microsoft Azure Active Directory Passport 1.3.1
Microsoft Azure Active Directory Passport 1.3.2
Microsoft Azure Active Directory Passport 1.4.2
Microsoft Azure Active Directory Passport 1.4.3
Microsoft Azure Active Directory Passport 1.1.1
Microsoft Azure Active Directory Passport 1.2.0
Microsoft Azure Active Directory Passport 1.3.0
Microsoft Azure Active Directory Passport 1.4.0
Microsoft Azure Active Directory Passport 1.4.1
5
CVSSv2
CVE-2004-0120
The Microsoft Secure Sockets Layer (SSL) library, as used in Windows 2000, Windows XP, and Windows Server 2003, allows remote malicious users to cause a denial of service via malformed SSL messages.
Microsoft Windows 2000
Microsoft Windows 2003 Server R2
Microsoft Windows Xp
1 EDB exploit
5
CVSSv2
CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...
Openssl Openssl
Filezilla-project Filezilla Server
Siemens Application Processing Engine Firmware 2.0
Siemens Cp 1543-1 Firmware 1.1
Siemens Simatic S7-1500 Firmware 1.5
Siemens Simatic S7-1500t Firmware 1.5
Siemens Elan-8.2
Siemens Wincc Open Architecture 3.12
Intellian V100 Firmware 1.20
Intellian V100 Firmware 1.21
Intellian V100 Firmware 1.24
Intellian V60 Firmware 1.15
Intellian V60 Firmware 1.25
Mitel Micollab 6.0
Mitel Micollab 7.0
Mitel Micollab 7.1
Mitel Micollab 7.2
Mitel Micollab 7.3.0.104
Mitel Micollab 7.3
Mitel Mivoice 1.1.3.3
Mitel Mivoice 1.2.0.11
Mitel Mivoice 1.3.2.2
4 EDB exploits
2 Nmap scripts
308 Github repositories
4 Articles
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started