ADFS Security Feature Bypass Vulnerability

A security feature bypass vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests.

Threat ID:: CC-2608
Category:
Threat Severity:: Low
Threat Vector:
Published:: 15 August 2018 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

A security feature bypass vulnerability exists when Active Directory Federation Services (ADFS) improperly handles multi-factor authentication requests.

Affected platforms

The following platforms are known to be affected:

Microsoft Windows Server

Windows Server - Version 2012 R2 and 2016
Windows Server Core - Versions 1709 and 1803

Threat details

To exploit this vulnerability, an attacker could send a specially crafted authentication request. An attacker who successfully exploited this vulnerability could bypass some, but not all, of the authentication factors.

For further information

CVE-2018-8340

Remediation steps

Type	Step
	User and administrators are encouraged to review Microsoft's ADFS Security Update and apply the necessary updates.

CVE Vulnerabilities

Status

CVE-2018-8340

Last edited: 17 February 2020 12:35 pm