Informazioni sul CVE-2019-1006

N/A

CWE ID: N/A

Base Score (CVSS): N/A

CVE: CVE-2019-1006

Descrizione: An authentication bypass vulnerability exists in Windows Communication Foundation (WCF) and Windows Identity Foundation (WIF), allowing signing of SAML tokens with arbitrary symmetric keys, aka ‘WCF/WIF SAML Token Authentication Bypass Vulnerability’.

Vettore di attacco

Punteggio CVSS

Il CVSS è un sistema di valutazione che misura la gravità di una vulnerabilità informatica considerando fattori come l’impatto potenziale, la probabilità di attacco e la facilità di esecuzione.

Punteggio Base (calcolato da AziendaSicura): 0.0 (None)

Riassunto: .

Dettaglio del Vettore

Metrica Valore Significato Descrizione

Riferimenti esterni

Prodotti interessati

  • Microsoft – Windows
  • Microsoft – Windows Server
  • Microsoft – Microsoft SharePoint Foundation
  • Microsoft – Microsoft .NET Framework 4.5.2
  • Microsoft – Microsoft .NET Framework 4.6
  • Microsoft – Microsoft SharePoint Enterprise Server
  • Microsoft – Microsoft .NET Framework 4.6/4.6.1/4.6.2
  • Microsoft – Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2
  • Microsoft – Microsoft SharePoint Server
  • Microsoft – Windows 10 Version 1903 for 32-bit Systems
  • Microsoft – Windows 10 Version 1903 for x64-based Systems
  • Microsoft – Windows 10 Version 1903 for ARM64-based Systems
  • Microsoft – Windows Server, version 1903 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2012
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2012 R2
  • Microsoft – Microsoft .NET Framework 4.8 on Windows RT 8.1
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2016
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 4.8 on Windows Server, version 1803 (Server Core Installation)
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.8 on Windows Server, version 1903 (Server Core installation)
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for 32-bit Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for x64-based Systems
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019
  • Microsoft – Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019 (Server Core installation)
  • Microsoft – Microsoft.IdentityModel
  • Microsoft – Microsoft .NET Framework 3.5
  • Microsoft – Microsoft .NET Framework 3.0
  • Microsoft – Microsoft .NET Framework 2.0
  • Microsoft – Microsoft .NET Framework 3.5.1

Relazioni con altri prodotti

Produttore:Microsoft
Prodotto: Microsoft SharePoint Server
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft SharePoint Foundation
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft SharePoint Enterprise Server
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Windows
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Windows Server
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.5.2
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.6
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.6/4.6.1/4.6.2
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.6/4.6.1/4.6.2/4.7/4.7.1/4.7.2
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.0
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 2.0
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5.1
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Windows 10 Version 1903 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Windows 10 Version 1903 for ARM64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: version 1903 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Windows 10 Version 1903 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: version 1803 (Server Core Installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 7 for 32-bit Systems Service Pack 1
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 7 for x64-based Systems Service Pack 1
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2008 R2 for x64-based Systems Service Pack 1
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2012
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2012 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 8.1 for 32-bit systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 8.1 for x64-based systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2012 R2
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows RT 8.1
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2012 R2 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2016
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1607 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server 2016 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1703 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1709 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows 10 Version 1803 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 4.8 on Windows Server
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1809 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows Server 2019 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows 10 Version 1903 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.8 on Windows Server
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for 32-bit Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.7.2 on Windows 10 Version 1809 for x64-based Systems
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft .NET Framework 3.5 AND 4.7.2 on Windows Server 2019 (Server Core installation)
Anno: 2019
CWE:
CVSS: 0.0

Produttore:Microsoft
Prodotto: Microsoft.IdentityModel
Anno: 2019
CWE:
CVSS: 0.0