CVE-2017-8613
CVE-2017-8613
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 3.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
29 Jun 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "Azure AD Connect Elevation of Privilege Vulnerability."
Affected products
Microsoft Corporation · Azure AD ConnectWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →