CVE-2019-0975
Expert Analysis
Professional remediation guidance
Get tailored security recommendations from our analyst team for CVE-2019-0975. We'll provide specific mitigation strategies based on your environment and risk profile.
Description
A security feature bypass vulnerability exists when Active Directory Federation Services (ADFS) improperly updates its list of banned IP addresses. To exploit this vulnerability, an attacker would have to convince a victim ADFS administrator to update the list of banned IP addresses. This security update corrects how ADFS updates its list of banned IP addresses., aka 'ADFS Security Feature Bypass Vulnerability'. This CVE ID is unique from CVE-2019-1126.
Available Exploits
Related News
Affected Products
Affected Versions:
Affected Versions:
GitHub Security Advisories
Community-driven vulnerability intelligence from GitHub
Advisory Details
CVSS Scoring
CVSS Score
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L
References
Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: April 4, 2024