High severity8.1NVD Advisory· Published Jun 29, 2017· Updated Jun 17, 2026
CVE-2017-8613
CVE-2017-8613
Description
Azure AD Connect Password writeback, if misconfigured during enablement, allows an attacker to reset passwords and gain unauthorized access to arbitrary on-premises AD privileged user accounts aka "Azure AD Connect Elevation of Privilege Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- cpe:2.3:a:microsoft:azure_active_directory_connect:*:*:*:*:*:*:*:*Range: <=1.1.524.0
- Microsoft Corporation/Azure AD Connectv5Range: Azure AD Connect versions prior to version 1.1.553.0
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/99294nvdThird Party AdvisoryVDB Entry
- technet.microsoft.com/library/security/4033453nvdMitigationVendor Advisory
News mentions
0No linked articles in our index yet.