Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
A vulnerability was found in Microsoft O365 and classified as critical. This issue affects the Conditional Access Policy which leads to improper access controls. By default the policy is not verified for every request. The attack may be initiated remotely. Exploit details have been disclosed to the public. It is recommended to change the configuration settings. NOTE: Vendor claims that pre-requisites are very high, the feature works as intended, and that configuration settings might mitigate the issue.
CVSS3: 5
fstec
больше 4 лет назад
Уязвимость пакета программ Microsoft Office 365, связанная недостатками контроля доступа, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации