CVE-2019-1000 – An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect …

Vuln ID: CVE-2019-1000

Published:  2019-05-16  19:29:05Z

Description: An elevation of privilege vulnerability exists in Microsoft Azure Active Directory Connect build 1.3.20.0, which allows an attacker to execute two PowerShell cmdlets in context of a privileged account, and perform privileged actions.To exploit this, an attacker would need to authenticate to the AzureÂ? AD Connect server, aka ‘Microsoft Azure AD Connect Elevation of Privilege Vulnerability’.

Source: NVD.NIST.GOV

 

Tags