Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2014-6331

Microsoft Active Directory Federation Services (AD FS) 2.0, 2.1, and 3.0, when a configured SAML Relying Party lacks a sign-out endpoint, does not properly process logoff actions, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation, aka "Active Directory Federation Services Information Disclosure Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.336
EPSS Ranking 96.8%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2014-6331


Contact Us

Shodan ® - All rights reserved