Medium severity6.1NVD Advisory· Published May 21, 2020· Updated Jun 17, 2026
CVE-2020-1055
CVE-2020-1055
Description
A cross-site-scripting (XSS) vulnerability exists when Active Directory Federation Services (ADFS) does not properly sanitize user inputs, aka 'Microsoft Active Directory Federation Services Cross-Site Scripting Vulnerability'.
Affected products
11- Microsoft/Windows 10 Version 1903 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1903 for x64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for 32-bit Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for ARM64-based Systemsv5Range: unspecified
- Microsoft/Windows 10 Version 1909 for x64-based Systemsv5Range: unspecified
- Range: 2019
- Microsoft/Windows Server, version 1903 (Server Core installation)v5Range: unspecified
- Microsoft/Windows Server, version 1909 (Server Core installation)v5Range: unspecified
Patches
Vulnerability mechanics
References
1- portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1055nvdPatchVendor Advisory
News mentions
0No linked articles in our index yet.