Active Directory Federation Services Elevation of Privilege Vulnerability
Summary
Active Directory Federation Services Elevation of Privilege Vulnerability Affected products named by the advisory: Windows Server 2019; Windows Server 2022; Windows Server 2025; Windows Server 2016; and 2 more. Affected products named by the advisory: Windows Server 2012 R2.
CISA Known Exploited Vulnerability
- Listed:
- Jul 14, 2026 · federal remediation due Jul 28, 2026
- Required action:
- Apply mitigations in accordance with vendor instructions, ensuring compliance with CISA’s BOD 26-04 Prioritizing Security Updates Based on Risk (see URL in Notes) guidance and CISA’s “Forensics Triage Requirements” (see URL in Notes). Follow applicable BOD 26-04 guidance for cloud services or discontinue use of the product if mitigations are unavailable. Stakeholders are responsible for evaluating each asset's internet exposure and ensuring adherence to BOD 26-04 patching guidelines.
- Ransomware use:
- Unknown
KEV is a prioritization signal from CISA — remediation detail still comes from the vendor advisory.
- Windows 10 Version 1607 10.0.14393.0
- Windows 10 Version 1809 10.0.17763.0
- Windows Server 2012 6.2.9200.0
- Windows Server 2012 (Server Core installation) 6.2.9200.0
- Windows Server 2012 R2 6.3.9600.0
- Windows Server 2012 R2 (Server Core installation) 6.3.9600.0
- Windows Server 2016 10.0.14393.0
- Windows Server 2016 (Server Core installation) 10.0.14393.0
- Windows Server 2019 10.0.17763.0
- Windows Server 2019 (Server Core installation) 10.0.17763.0
- Windows Server 2022 10.0.20348.0
- Windows Server 2025 10.0.26100.0
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
- KB5099538 (build 10.0.17763.9020)
- KB5099540 (build 10.0.20348.5386)
- KB5099536 (build 10.0.26100.33158)
- KB5099535 (build 10.0.14393.9339)
- KB5099445 (build 6.2.9200.26226)
- KB5099444 (build 6.3.9600.23291)
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Mitigation checklist
- Install the applicable security update for your platform: KB5099538, KB5099540, KB5099536, KB5099535, KB5099445, KB5099444 (see the Microsoft Update Catalog).
Official advisory · high-confidence parse· fetched 2 hours ago·verify at source
Discussion(0)
No comments yet. Share field notes, upgrade gotchas, or questions — verify against the vendor advisory before acting on community advice.
Sign in to join the discussion.