CVE-2023-40702 | Ping Identity PingOne MFA Integration Kit up to 2.3.0 authentication spoofing

Inserito da Angelo Barbosa | Lug 9, 2024 | CVE

A vulnerability has been found in Ping Identity PingOne MFA Integration Kit up to 2.3.0 and classified as critical. This vulnerability affects unknown code. The manipulation leads to authentication bypass by spoofing.

This vulnerability was named CVE-2023-40702. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-40702 | Ping Identity PingOne MFA Integration Kit up to 2.3.0 authentication spoofing

Post correlati

CVE-2024-2862 | LG Electronics LED Assistant 2.1.65 Password improper authentication

CVE-2023-38042 | Ivanti Secure Access Client up to 22.7 on Windows Local Privilege Escalation

CVE-2022-43915 | IBM App Connect Enterprise Certified Container up to 12.1 permission assignment (XFDB-241037)

CVE-2024-5121 | SourceCodester Event Registration System 1.0 e cross site scripting