Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability

6.2 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

Basic Information

ID CVE-2025-59258

Source microsoft

Published Oct 14, 2025 at 17:00

Modified Oct 14, 2025 at 19:24

Affected Product

Vendor Microsoft

Product Windows Server 2019

Version 10.0.17763.0

Affected Versions Microsoft Windows Server 2019 10.0.17763.0
Microsoft Windows Server 2019 (Server Core installation) 10.0.17763.0
Microsoft Windows Server 2022 10.0.20348.0
Microsoft Windows Server 2025 (Server Core installation) 10.0.26100.0
Microsoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0
Microsoft Windows Server 2025 10.0.26100.0
Microsoft Windows Server 2016 10.0.14393.0
Microsoft Windows Server 2016 (Server Core installation) 10.0.14393.0
Microsoft Windows Server 2012 6.2.9200.0
Microsoft Windows Server 2012 (Server Core installation) 6.2.9200.0
Microsoft Windows Server 2012 R2 6.3.9600.0
Microsoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0

CWE Classification

CWE-532

References

msrc.microsoft.com /update-guide/vulnerability/CVE-2025-59258

{
    "lastseen": "",
    "description": "",
    "published": "2025-10-14T17:00:44.802Z",
    "modified": "2025-10-14T19:24:27.366Z",
    "type": "cve",
    "title": "Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability",
    "source": "microsoft",
    "references": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-59258",
    "id": "CVE-2025-59258",
    "bulletinFamily": "",
    "cwe": [
        "CWE-532"
    ],
    "cvelist": null,
    "sourceData": "Microsoft Windows Server 2019 10.0.17763.0\nMicrosoft Windows Server 2019 (Server Core installation) 10.0.17763.0\nMicrosoft Windows Server 2022 10.0.20348.0\nMicrosoft Windows Server 2025 (Server Core installation) 10.0.26100.0\nMicrosoft Windows Server 2022, 23H2 Edition (Server Core installation) 10.0.25398.0\nMicrosoft Windows Server 2025 10.0.26100.0\nMicrosoft Windows Server 2016 10.0.14393.0\nMicrosoft Windows Server 2016 (Server Core installation) 10.0.14393.0\nMicrosoft Windows Server 2012 6.2.9200.0\nMicrosoft Windows Server 2012 (Server Core installation) 6.2.9200.0\nMicrosoft Windows Server 2012 R2 6.3.9600.0\nMicrosoft Windows Server 2012 R2 (Server Core installation) 6.3.9600.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.2,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Windows Server 2019",
    "version": "10.0.17763.0",
    "vendor": "Microsoft",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Windows Active Directory Federation Services (ADFS) Information Disclosure Vulnerability_CVE-2025-59258

Basic Information

Affected Product

CWE Classification

References

💭 Join the Security Discussion ❌ Cancel Reply