CVEDB API

Vulnerabilities

Vulnerable Software

Microsoft: >> Azure Active Directory Connect Security Vulnerabilities

CVE-2021-36949

Microsoft Azure Active Directory Connect Authentication Bypass Vulnerability

CVSS Score

7.1

EPSS Score

0.007

Published

2021-08-12

CVE-2019-1000

An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an attacker to execute two PowerShell cmdlets in context of a privileged account, and perform privileged actions.To exploit this, an attacker would need to authenticate to the AzureÃ‚Â AD Connect server, aka 'Microsoft Azure AD Connect Elevation of Privilege Vulnerability'.

CVSS Score

5.3

EPSS Score

0.046

Published

2019-05-16

CVE-2017-8613

Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "Azure AD Connect Elevation of Privilege Vulnerability."

CVSS Score

8.1

EPSS Score

0.021

Published

2017-06-29

Page 1

Vulnerabilities

Vulnerable Software

Microsoft: >> Azure Active Directory Connect Security Vulnerabilities

Products

Pricing

Contact Us