ADFS Security Feature Bypass Vulnerability - CVE-2019-0975ID: oval:org.secpod.oval:def:57268 | Date: (C)2019-07-10 (M)2022-12-30 |
Class: VULNERABILITY | Family: windows |
A security feature bypass vulnerability exists when Active Directory Federation Services (ADFS) improperly updates its list of banned IP addresses.To exploit this vulnerability, an attacker would have to convince a victim ADFS administrator to update the list of banned IP addresses.This security update corrects how ADFS updates its list of banned IP addresses.
Platform: |
Microsoft Windows Server |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2019 |