Aug 2019: Azure Active Directory Authentication Library Elevation of Privilege Vulnerability: CVE-2019-1258 August 2019

Aug 2019: Azure Active Directory Authentication Library Elevation of Privilege Vulnerability
CVE-2019-1258 Published on August 14, 2019

Azure Active Directory Authentication Library Elevation of Privilege Vulnerability
An elevation of privilege vulnerability exists in Azure Active Directory Authentication Library On-Behalf-Of flow, in the way the library caches tokens. This vulnerability allows an authenticated attacker to perform actions in context of another user. The authenticated attacker can exploit this vulneraiblity by accessing a service configured for On-Behalf-Of flow that assigns incorrect tokens. This security update addresses the vulnerability by removing fallback cache look-up for On-Behalf-Of scenarios.

Products Associated with CVE-2019-1258

stack.watch emails you whenever new vulnerabilities are published in Microsoft Active Directory Authentication Library or Microsoft Nuget. Just hit a watch button to start following.

Affected Versions

Version 5.0.0 and below publication is affected.

Exploit Probability

EPSS

10.65%

Percentile

93.19%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Aug 2019: Azure Active Directory Authentication Library Elevation of Privilege VulnerabilityCVE-2019-1258 Published on August 14, 2019

Products Associated with CVE-2019-1258

Affected Versions

Exploit Probability

Aug 2019: Azure Active Directory Authentication Library Elevation of Privilege Vulnerability
CVE-2019-1258 Published on August 14, 2019