CVE-2014-1812CISA KEVEPSS p99.1%

CVE-2014-1812Microsoft Windows Group Policy Preferences Password Privilege Escalation Vulnerability

Microsoft / Windows

Description

Microsoft Windows Active Directory contains a privilege escalation vulnerability due to the way it distributes passwords that are configured using Group Policy preferences. An authenticated attacker who successfully exploits the vulnerability could decrypt the passwords and use them to elevate privileges on the domain.

Scoring

EPSS64.31% probability of exploitation · percentile 99.1% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2021-11-03

(incoming)1

TypeTargetConfidenceTier
KEVEntryMicrosoft Windows Group Policy Preferences Password Privilege Escalation Vulnerabilitykev-cve-2014-18120%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
Microsoft Kerberos Key Distribution Center (KDC) Privilege Escalation Vulnerability
CVE
Microsoft Active Directory Domain Services Privilege Escalation Vulnerability
CVE
CVE-2025-21293
CVE
Microsoft Windows Privilege Escalation Vulnerability
CVE
Microsoft Windows User Profile Service Privilege Escalation Vulnerability
Sub-technique
Group Policy Preferences
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.