CVE-2020-0837 — Improper Authentication in Microsoft Windows 10 Version 1607

CWE-287 — Improper Authentication3 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

1.4%

top 19.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 10 Version 1607 Microsoft Windows 10 Version 1809 Microsoft Windows 10 Version 1903 FOR 32-bit Systems +18 more

Timeline

PublishedSep 11

Latest updateMay 24

Description

An elevation of privilege vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors. To exploit this vulnerability, an attacker could send a specially crafted authentication request. This security update corrects how ADFS handles multi-factor authentication requests.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 1.6 | Impact: 3.6

Affected Packages22 packages

▶CVEListV5microsoft/windows_server_201610.0.0 — publication

▶CVEListV5microsoft/windows_server_201910.0.0 — publication

▶CVEListV5microsoft/windows_10_version_160710.0.0 — publication

▶CVEListV5microsoft/windows_10_version_180910.0.0 — publication

▶CVEListV5microsoft/windows_10_version_190910.0.0 — publication

Patches

Patch: portal.msrc.microsoft.com ↗Patch: portal.msrc.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-cxc9-2m79-6f46: A spoofing vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests↗2022-05-24

▶

📋Vendor Advisories

Microsoft

ADFS MFA Elevation of Privilege Vulnerability↗2020-09-08

▶