A vulnerability, which was classified as critical, was found in Ping Identity PingOne MFA Integration Kit up to 2.3.0. This affects an unknown part. The manipulation leads to authentication bypass by spoofing.
This vulnerability is uniquely identified as CVE-2023-40356. It is possible to initiate the attack remotely. There is no exploit available.
It is recommended to upgrade the affected component.