Active Directory Series: Critical Profiled Vulnerabilities

Critical Profiled Vulnerabilities in Active Directory

Vulnerability Overview
Noncredential, Quick Compromise Vulnerabilities
Low User Access Vulnerabilities
Credentialed, Known Vulnerabilities

Vulnerability Overview

Attackers and penetration testers check for various vulnerabilities when targeting Active Directory environments. Secured’s KEV Catalog Series aims to explain how attackers detect and exploit these vulnerabilities to provide greater awareness of these common attack methods. This post provides an ongoing list of Active Directory vulnerabilities that Secured has reviewed in detail. These vulnerability are categorized off of the Orange CyberDefense AD penetration testing mind map, which can be found here.

Download our Capabilities Brief

Active Directory Series

Cybersecurity

Education

Critical Profiled Vulnerabilities in Active Directory

Table of Contents

Vulnerability Overview

Noncredentialed, Quick Compromise Vulnerabilities:

Low Access User Privilege Escalation Vulnerabilities

Credentialed, Known Vulnerabilities

Secured™: The Official Cybersecurity Partner of Skull Games

Unveiling the Tools Behind Object Recognition: A Deep Dive into Deep Learning Equipment

Looking Back on 10 Cybersecurity Trends of 2023

KEV Catalog: Apache CouchDB Remote Privilege Escalation (CVE-2022-24706)

KEV Catalog: “Ghostcat” Apache Tomcat Improper Privilege Management Vulnerability (CVE-2020-1938)

KEV Catalog: “Drupalgeddon2”: Drupal Module Configuration Vulnerability CVE-2018-7600

KEV Catalog: “Spring4Shell” Spring Framework Remote Code Execution Vulnerability (CVE-2022-22965)

KEV Catalog: Debian-specific Redis Server Lua Sandbox Escape Vulnerability (CVE-2022-0543)

KEV Catalog: Apache Airflow “Example DAG” Command Injection (CVE-2020-11978)

KEV Catalog: VMware Spring Cloud Gateway Code Injection Vulnerability (CVE-2022-22947)

KEV Catalog: VMware Tanzu Spring Cloud Function Remote Code Execution Vulnerability (CVE-2022-22963)

KEV Catalog: Red Hat Polkit “pwnkit” Out-of-Bounds Read and Write Vulnerability (CVE-2021-4034)

KEV Catalog: SaltStack Salt Authentication Bypass (CVE-2020-11651)

Ready For a Free Consultation For Any Size Solution?

Company

Services

Contact Us