๐Ÿ” CVE Alert

CVE-2023-35348

MEDIUM 6.5

Active Directory Federation Service Security Feature Bypass Vulnerability

CVSS Score
6.5
EPSS Score
0.0%
EPSS Percentile
0th

Active Directory Federation Service Security Feature Bypass Vulnerability

Vendor microsoft
Product windows server 2019
Ecosystems
Industries
TechnologyEnterprise
Published Jul 11, 2023
Last Updated Jan 1, 2025
Stay Ahead of the Next One

Get instant alerts for microsoft windows server 2019

Be the first to know when new medium vulnerabilities affecting microsoft windows server 2019 are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:F/RL:O/RC:C
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability

Affected Versions

Microsoft / Windows Server 2019
10.0.17763.0 < 10.0.17763.4645
Microsoft / Windows Server 2019 (Server Core installation)
10.0.17763.0 < 10.0.17763.4645
Microsoft / Windows Server 2022
10.0.20348.0 < 10.0.20348.1850
Microsoft / Windows Server 2016
10.0.14393.0 < 10.0.14393.6085
Microsoft / Windows Server 2016 (Server Core installation)
10.0.14393.0 < 10.0.14393.6085

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
msrc.microsoft.com: https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-35348