Skip to main content

Azure Active Directory Connect

3 CVEs product

Monthly

CVE-2021-36949 HIGH PATCH This Week

Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability. Rated high severity (CVSS 7.1). This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Microsoft Authentication Bypass Azure Active Directory Connect Azure Active Directory Connect Provisioning Agent
NVD
CVSS 3.1
7.1
EPSS
1.2%
CVE-2019-1000 MEDIUM PATCH This Month

An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an attacker to execute two PowerShell cmdlets in context of a privileged. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Microsoft Azure Active Directory Connect
NVD
CVSS 3.0
5.3
EPSS
1.8%
CVE-2017-8613 HIGH This Week

Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Microsoft Authentication Bypass Azure Active Directory Connect
NVD
CVSS 3.0
8.1
EPSS
2.1%
EPSS 1% CVSS 7.1
HIGH PATCH This Week

Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability. Rated high severity (CVSS 7.1). This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Microsoft Authentication Bypass Azure Active Directory Connect +1
NVD
EPSS 2% CVSS 5.3
MEDIUM PATCH This Month

An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an attacker to execute two PowerShell cmdlets in context of a privileged. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable. This Improper Privilege Management vulnerability could allow attackers to escalate privileges to gain unauthorized elevated access.

Privilege Escalation Microsoft Azure Active Directory Connect
NVD
EPSS 2% CVSS 8.1
HIGH This Week

Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Microsoft Authentication Bypass Azure Active Directory Connect
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy