ADFS Spoofing Vulnerability - CVE-2020-0837ID: oval:org.secpod.oval:def:65489 | Date: (C)2020-09-09 (M)2024-04-17 |
Class: VULNERABILITY | Family: windows |
A spoofing vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests.To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors.This security update corrects how ADFS handles multi-factor authentication requests.
Platform: |
Microsoft Windows Server |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |
Microsoft Windows 10 |