CVE-2024-25573 | Ping Identity PingFederate up to 11.2.10/11.3.9/12.0.6/12.1.4 Administrative Console cross site scripting

Inserito da Angelo Barbosa | Giu 15, 2025 | CVE

A vulnerability classified as problematic was found in Ping Identity PingFederate up to 11.2.10/11.3.9/12.0.6/12.1.4. This vulnerability affects unknown code of the component Administrative Console. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-25573. The attack can be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-25573 | Ping Identity PingFederate up to 11.2.10/11.3.9/12.0.6/12.1.4 Administrative Console cross site scripting

Post correlati

CVE-2024-2693 | Link Whisper Free Plugin up to 0.7.1 on WordPress code injection

CVE-2024-22373 | Mathieu Malaterre Grassroot DICOM 3.0.23 DICOM File DecodeByStreamsCommon memory corruption (TALOS-2024-1935)

CVE-2024-33368 | Plasmoapp RPShare Fabric mod 1.0.0 DonwloadPromptScreen build os command injection

CVE-2025-24826 | Acronis Snap Deploy up to 4624 on Windows default permission