#Active Directory Federation Services

CVE-2021-41361: Active Directory Federation Server Spoofing Vulnerability

*How could an attacker exploit this vulnerability?* The ADFS (Active Directory Federation Services) services are vulnerable during the logout redirect request to cross-site scripting of the post logout redirect URI. An attacker who successfully exploited this vulnerability could leave an application using this ADFS library vulnerable to common XSS attacks.

3 years ago

Microsoft Security Response Center

Open in Source

#Active Directory Federation Services #Security Vulnerability #xss #vulnerability

Tag

#Active Directory Federation Services