Medium severity5.3NVD Advisory· Published Mar 17, 2017· Updated May 13, 2026

CVE-2017-0043

Description

Active Directory Federation Services in Microsoft Windows 10 1607, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 Gold and R2, and Windows Server 2016 allows local users to obtain sensitive information via a crafted application, aka "Microsoft Active Directory Federation Services Information Disclosure Vulnerability."

Affected products

Microsoft Corporation/Active Directory Federation Servicesv5
Range: Active Directory Federation Services in Microsoft Windows 10 1607, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 Gold and R2, and Windows Server 2016

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0043nvdPatchVendor Advisory
www.securityfocus.com/bid/96628nvdThird Party AdvisoryVDB Entry
www.securitytracker.com/id/1038018nvd

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000