Active Directory Certificate Services
by Microsoft
CVEs (5)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-37978 | 0.01 | — | 0.01 | Oct 11, 2022 | Windows Active Directory Certificate Services Security Feature Bypass | |||
| CVE-2022-37976 | 0.01 | — | 0.02 | Oct 11, 2022 | Active Directory Certificate Services Elevation of Privilege Vulnerability | |||
| CVE-2023-35351 | 0.00 | — | 0.01 | Jul 11, 2023 | Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability | |||
| CVE-2023-35350 | 0.00 | — | 0.01 | Jul 11, 2023 | Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability | |||
| CVE-2011-1264 | 0.00 | — | 0.05 | Jun 16, 2011 | Cross-site scripting (XSS) vulnerability in Active Directory Certificate Services Web Enrollment in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, R2, and R2 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka… |
- CVE-2022-37978Oct 11, 2022risk 0.01cvss —epss 0.01
Windows Active Directory Certificate Services Security Feature Bypass
- CVE-2022-37976Oct 11, 2022risk 0.01cvss —epss 0.02
Active Directory Certificate Services Elevation of Privilege Vulnerability
- CVE-2023-35351Jul 11, 2023risk 0.00cvss —epss 0.01
Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
- CVE-2023-35350Jul 11, 2023risk 0.00cvss —epss 0.01
Windows Active Directory Certificate Services (AD CS) Remote Code Execution Vulnerability
- CVE-2011-1264Jun 16, 2011risk 0.00cvss —epss 0.05
Cross-site scripting (XSS) vulnerability in Active Directory Certificate Services Web Enrollment in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, R2, and R2 SP1 allows remote attackers to inject arbitrary web script or HTML via an unspecified parameter, aka…