Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft active directory federation services 2.0 vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2015-1757
Cross-site scripting (XSS) vulnerability in adfs/ls in Active Directory Federation Services (AD FS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 allows remote malicious users to inject arbitrary web script or HTML via the wct parameter, aka "ADFS XSS Eleva...
Microsoft Active Directory Federation Services 2.0
Microsoft Active Directory Federation Services 2.1
445
VMScore
CVE-2014-6331
Microsoft Active Directory Federation Services (AD FS) 2.0, 2.1, and 3.0, when a configured SAML Relying Party lacks a sign-out endpoint, does not properly process logoff actions, which makes it easier for remote malicious users to obtain access by leveraging an unattended workst...
Microsoft Active Directory Federation Services 2.1
Microsoft Active Directory Federation Services 2.0
Microsoft Active Directory Federation Services 3.0
445
VMScore
CVE-2013-3185
Microsoft Active Directory Federation Services (AD FS) 1.x up to and including 2.1 on Windows Server 2003 R2 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 allows remote malicious users to obtain sensitive information about the service account, and possibly cond...
Microsoft Active Directory Federation Services 2.0
Microsoft Active Directory Federation Services 2.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started