VYPR
Medium severity6.1NVD Advisory· Published May 21, 2020· Updated Jun 17, 2026

CVE-2020-1055

CVE-2020-1055

Description

A cross-site-scripting (XSS) vulnerability exists when Active Directory Federation Services (ADFS) does not properly sanitize user inputs, aka 'Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability'.

Affected products

11
  • Range: 10 Version 1809 for 32-bit Systems
  • Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1903 for x64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for 32-bit Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for ARM64-based Systemsv5
    Range: unspecified
  • Microsoft/Windows 10 Version 1909 for x64-based Systemsv5
    Range: unspecified
  • Range: 2019
  • Microsoft/Windows Server, version 1903 (Server Core installation)v5
    Range: unspecified
  • Microsoft/Windows Server, version 1909 (Server Core installation)v5
    Range: unspecified

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.