CVE-2019-0683

An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default setting that lets an attacker in the…

microsoft·CWE-276·Published 2019-04-08

CVSS

—

EPSS

0.03

KEV

Exploits

cve.orgen

280 chars

An elevation of privilege vulnerability exists in Active Directory Forest trusts due to a default setting that lets an attacker in the trusting forest request delegation of a TGT for an identity from the trusted forest, aka 'Active Directory Elevation of Privilege Vulnerability'.

NVDen

280 chars

NVDes

334 chars

Se presenta una vulnerabilidad de elevación de privilegios en Active Directory Forest trusts debido a una configuración predeterminada que permite a un atacante en la delegación de petición trusting forest de un TGT para una identidad del trusted forest, también se conoce como “Active Directory Elevation of Privilege Vulnerability".

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N
3.0	Primary	NVD	5.9	2.2	3.6	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N