|Number of vulnerabilities||1|
|CVE ID|| CVE-2018-8340
|Vulnerable software versions||
Windows Server 2012 R2
Windows Server 2016
The vulnerability allows a remote attacker to bypass certain authentication factors.
The vulnerability exists due to an error when processing multi-factor authentication requests within Active Directory Federation Services (AD FS). A remote attacker can bypass certain authentication factors during multi-factor authentication and gain unauthorized access to sensitive data and functionality.Remediation
Install updates from vendor's website.External links