SecBoard
Back to CVE overview

CVE-2026-56155

HIGH(7.8)KEV — Actively Exploited

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Risk Signal Score55/100 — HOCH
  • CVSS 7.8 — Hoch
  • Im CISA KEV-Katalog (aktiv ausgenutzt)

Mentions (last 60 days)

Articles

CISA KEV

Confirmed exploited

EPSS-Score

0%

Exploit Probability (30 days)

CVSS Score

7.8

Technical Severity

Description

Insufficient granularity of access control in Active Directory Federation Services (AD FS) allows an authorized attacker to elevate privileges locally.

References