Fixed an elevation of privilege vulnerability that exists in Microsoft Azure Active Directory Connect build 184.108.40.206. This vulnerability, under certain conditions, may allow an attacker to execute two powershell cmdlets in the context of a privileged account, and perform privileged actions. This security update addresses the issue by disabling these cmdlets. For more information see security update.To exploit this vulnerability, an attacker would need to authenticate to the Azure AD Connect server. These cmdlets can be executed remotely only if remote access is enabled on the Azure AD Connect server. This security update address the issue by disabling these cmdlets.
It is recommended to download and install AAD Connect 220.127.116.11 ASAP, rather than wait for the auto upgrade process to run which can take several days or may be disabled in your environment.