Search

Find a vulnerability

Search criteria

    28 vulnerabilities found for pingfederate by pingidentity

    CVE-2024-22477 (GCVE-0-2024-22477)

    Vulnerability from nvd – Published: 2024-07-09 23:01 – Updated: 2024-08-01 22:51
    VLAI
    Title
    PingFederate OIDC Policy Management Editor Cross-Site Scripting
    Summary
    A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
    Affected: 12.0.0 (custom)
    Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Create a notification for this product.
    Date Public
    2024-07-09 22:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-22477",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-10T13:29:31.833138Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-10T13:30:14.614Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T22:51:09.905Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0.9",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.9",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.8",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.3.4",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                },
                {
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.13",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue.\u003cbr\u003e"
                }
              ],
              "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue."
            }
          ],
          "datePublic": "2024-07-09T22:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.\u003cbr\u003e"
                }
              ],
              "value": "A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-592",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-592 Stored XSS"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 1.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-09T23:01:28.611Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate OIDC Policy Management Editor Cross-Site Scripting",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2024-22477",
        "datePublished": "2024-07-09T23:01:28.611Z",
        "dateReserved": "2024-01-17T17:27:24.603Z",
        "dateUpdated": "2024-08-01T22:51:09.905Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-22377 (GCVE-0-2024-22377)

    Vulnerability from nvd – Published: 2024-07-09 23:03 – Updated: 2024-08-01 22:43
    VLAI
    Title
    PingFederate Runtime Node Path Traversal
    Summary
    The deploy directory in PingFederate runtime nodes is reachable to unauthorized users.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
    Affected: 12.0.0 (custom)
    Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Create a notification for this product.
    pingidentity pingfederate Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
        cpe:2.3:a:pingidentity:pingfederate:10.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.3.0:*:*:*:*:*:*:*
    Create a notification for this product.
    pingidentity pingfederate Affected: 12.0.0
        cpe:2.3:a:pingidentity:pingfederate:12.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-07-09 22:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:10.3.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.1.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.3.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "lessThanOrEqual": "10.3.13",
                    "status": "affected",
                    "version": "10.3.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.0.9",
                    "status": "affected",
                    "version": "11.0.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.1.9",
                    "status": "affected",
                    "version": "11.1.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.2.8",
                    "status": "affected",
                    "version": "11.2.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.3.4",
                    "status": "affected",
                    "version": "11.3.0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:12.0.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-22377",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-15T13:15:10.302158Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-23T16:13:24.203Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T22:43:34.512Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0.9",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.9",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.8",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.3.4",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                },
                {
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.13",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue.\u003cbr\u003e"
                }
              ],
              "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue."
            }
          ],
          "datePublic": "2024-07-09T22:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The deploy directory in PingFederate runtime nodes is reachable to unauthorized users.\u003cbr\u003e"
                }
              ],
              "value": "The deploy directory in PingFederate runtime nodes is reachable to unauthorized users."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-09T23:03:27.722Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate Runtime Node Path Traversal",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The deploy directory can be restricted by making changes to runtime jetty configuration.\u0026nbsp;\u0026nbsp;\u003cbr\u003e"
                }
              ],
              "value": "The deploy directory can be restricted by making changes to runtime jetty configuration."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2024-22377",
        "datePublished": "2024-07-09T23:03:27.722Z",
        "dateReserved": "2024-01-17T17:27:24.578Z",
        "dateUpdated": "2024-08-01T22:43:34.512Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-40545 (GCVE-0-2023-40545)

    Vulnerability from nvd – Published: 2024-02-06 17:27 – Updated: 2024-08-22 16:53
    VLAI
    Title
    PingFederate OAuth client_secret_jwt Authentication Bypass
    Summary
    Authentication bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3.0 , ≤ 11.3.2 (custom)
    Create a notification for this product.
    pingidentity pingfederate Affected: 11.3.0 , ≤ 11.3.2 (custom)
        cpe:2.3:a:pingidentity:pingfederate:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:38:50.649Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.pingidentity.com/s/article/SECADV040-PingFederate-OAuth-Client-Authentication-Bypass"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate/previous-releases.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/hro1701116403236"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "lessThanOrEqual": "11.3.2",
                    "status": "affected",
                    "version": "11.3.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-40545",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-22T16:50:41.466461Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-22T16:53:12.079Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.2",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAuthentication\u0026nbsp;bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "Authentication\u00a0bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-06T17:28:00.505Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://support.pingidentity.com/s/article/SECADV040-PingFederate-OAuth-Client-Authentication-Bypass"
            },
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate/previous-releases.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/hro1701116403236"
            }
          ],
          "source": {
            "advisory": "SECADV040",
            "defect": [
              "PF-34645"
            ],
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate OAuth client_secret_jwt Authentication Bypass",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-40545",
        "datePublished": "2024-02-06T17:27:42.361Z",
        "dateReserved": "2023-08-25T16:59:38.674Z",
        "dateUpdated": "2024-08-22T16:53:12.079Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-39219 (GCVE-0-2023-39219)

    Vulnerability from nvd – Published: 2023-10-25 01:44 – Updated: 2025-06-12 14:58
    VLAI
    Title
    Admin Console Denial of Service via Java class enumeration
    Summary
    PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Affected: 11.2.0 , ≤ 11.2.6 (custom)
    Affected: 11.1.0 , ≤ 11.1.7 (custom)
    Affected: 10.3.0 , ≤ 10.3.12 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:02:06.169Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-39219",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-12T14:58:09.523502Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-12T14:58:40.168Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.6",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.7",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.12",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ePingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-131",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-131 Resource Leak Exposure"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400: Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T01:44:44.362Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-33449"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Admin Console Denial of Service via Java class enumeration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-39219",
        "datePublished": "2023-10-25T01:44:44.362Z",
        "dateReserved": "2023-07-25T20:13:14.871Z",
        "dateUpdated": "2025-06-12T14:58:40.168Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-37283 (GCVE-0-2023-37283)

    Vulnerability from nvd – Published: 2023-10-25 01:24 – Updated: 2024-08-02 17:09
    VLAI
    Title
    Authentication Bypass via HTML Form & Identifier First Adapter
    Summary
    Under a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter
    CWE
    • CWE-287 - Improper Authentication
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Affected: 11.2.0 , ≤ 11.2.6 (custom)
    Affected: 11.1.0 , ≤ 11.1.7 (custom)
    Affected: 10.3.0 , ≤ 10.3.12 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T17:09:34.014Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.6",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.7",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.12",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eUnder a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "Under a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287 Improper Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T01:24:47.780Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-34017"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Authentication Bypass via HTML Form \u0026 Identifier First Adapter",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-37283",
        "datePublished": "2023-10-25T01:24:47.780Z",
        "dateReserved": "2023-07-25T20:13:14.866Z",
        "dateUpdated": "2024-08-02T17:09:34.014Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-34085 (GCVE-0-2023-34085)

    Vulnerability from nvd – Published: 2023-10-25 02:03 – Updated: 2024-09-10 15:05
    VLAI
    Title
    User Attribute Disclosure via DynamoDB Data Stores
    Summary
    When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-359 - Exposure of Private Personal Information to an Unauthorized Actor
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T16:01:53.879Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-34085",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-10T15:00:49.766852Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-10T15:05:08.099Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "AWS DynamoDB as user attribute store"
                }
              ],
              "value": "AWS DynamoDB as user attribute store"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: transparent;\"\u003eWhen an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-153",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-153 Input Data Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.6,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-359",
                  "description": "CWE-359: Exposure of Private Personal Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T02:03:56.433Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-33935"
            ],
            "discovery": "INTERNAL"
          },
          "title": "User Attribute Disclosure via DynamoDB Data Stores",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-34085",
        "datePublished": "2023-10-25T02:03:56.433Z",
        "dateReserved": "2023-07-25T20:13:14.876Z",
        "dateUpdated": "2024-09-10T15:05:08.099Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40724 (GCVE-0-2022-40724)

    Vulnerability from nvd – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:48
    VLAI
    Title
    Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint.
    Summary
    The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 10.3.0 , < 10.3.0* (custom)
    Affected: 10.3.11 , ≤ 10.3.11 (custom)
    Affected: 11.0.0 , < 11.0.0* (custom)
    Affected: 11.0.6 , ≤ 11.0.6 (custom)
    Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.720Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-110/fll1675188537050"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40724",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:48:27.864493Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:48:33.050Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "10.3.0*",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.11",
                  "status": "affected",
                  "version": "10.3.11",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.0*",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.6",
                  "status": "affected",
                  "version": "11.0.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The PingFederate Local Identity Profiles \u0027/pf/idprofile.ping\u0027 endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitCodeMaturity": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "remediationLevel": "UNAVAILABLE",
                "reportConfidence": "CONFIRMED",
                "scope": "UNCHANGED",
                "temporalScore": 6.4,
                "temporalSeverity": "MEDIUM",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H/E:H/RL:U/RC:C",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-110/fll1675188537050"
            }
          ],
          "source": {
            "advisory": "SECADV033",
            "defect": [
              "PF-32805"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40724",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:48:33.050Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40723 (GCVE-0-2022-40723)

    Vulnerability from nvd – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:48
    VLAI
    Title
    Configuration-based MFA Bypass in PingID RADIUS PCV.
    Summary
    The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-305 - Authentication Bypass by Primary Weakness
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingID Radius PCV Affected: 2.10.0
    Affected: 3.0.0 , < 3.0.0* (custom)
    Affected: 3.0.2 , ≤ 3.0.2 (custom)
    Create a notification for this product.
    Ping Identity PingID Integration Kit (includes Radius PCV) Affected: 2.24 , < 2.24 (custom)
    Create a notification for this product.
    Ping Identity PingFederate (includes Radius PCV) Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.787Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_19_rn"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40723",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:48:50.451839Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:48:54.313Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingID Radius PCV",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.10.0"
                },
                {
                  "lessThan": "3.0.0*",
                  "status": "affected",
                  "version": "3.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "3.0.2",
                  "status": "affected",
                  "version": "3.0.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingID Integration Kit (includes Radius PCV)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.24",
                  "status": "affected",
                  "version": "2.24",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingFederate (includes Radius PCV)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitCodeMaturity": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "remediationLevel": "UNAVAILABLE",
                "reportConfidence": "CONFIRMED",
                "scope": "UNCHANGED",
                "temporalScore": 6.5,
                "temporalSeverity": "MEDIUM",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:H/RL:U/RC:C",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-305",
                  "description": "CWE-305 Authentication Bypass by Primary Weakness",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_19_rn"
            }
          ],
          "source": {
            "advisory": "SECADV035",
            "defect": [
              "PIM-3774"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Configuration-based MFA Bypass in PingID RADIUS PCV."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40723",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:48:54.313Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40722 (GCVE-0-2022-40722)

    Vulnerability from nvd – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:49
    VLAI
    Title
    Misconfiguration of RSA padding for offline MFA in the PingID Adapter for PingFederate.
    Summary
    A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-780 - Use of RSA Algorithm without OAEP
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingID Adapter for PingFederate Affected: 2.13.2 , < 2.13.2 (custom)
    Create a notification for this product.
    Ping Identity PingID Integration Kit (includes PingID Adapter) Affected: 2.24 , < 2.24 (custom)
    Create a notification for this product.
    Ping Identity PingFederate (includes PingID Adapter) Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Credits
    Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.770Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_20_rn"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_adapter_configuring_offline_mfa"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40722",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:49:10.680225Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:49:20.723Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingID Adapter for PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.13.2",
                  "status": "affected",
                  "version": "2.13.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingID Integration Kit (includes PingID Adapter)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.24",
                  "status": "affected",
                  "version": "2.24",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingFederate (includes PingID Adapter)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-780",
                  "description": "CWE-780 Use of RSA Algorithm without OAEP",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_20_rn"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_adapter_configuring_offline_mfa"
            }
          ],
          "source": {
            "advisory": "SECADV035",
            "defect": [
              "PIM-2677"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Misconfiguration of RSA padding for offline MFA in the PingID Adapter for PingFederate."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40722",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:49:20.723Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-23722 (GCVE-0-2022-23722)

    Vulnerability from nvd – Published: 2022-05-02 22:05 – Updated: 2024-08-03 03:51
    VLAI
    Title
    PingFederate Password Reset via Authentication API Mishandling
    Summary
    When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user’s password.
    Severity
    No CVSS data available.
    CWE
    • CWE-288 - Authentication Bypass Using an Alternate Path or Channel
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0 , ≤ 11.0 (custom)
    Affected: 10.3 , ≤ 10.3.4 (custom)
    Affected: 10.2 , ≤ 10.2.7 (custom)
    Affected: 10.1 , ≤ 10.1.9 (custom)
    Affected: 10.0 , ≤ 10.0.12 (custom)
    Affected: 9.3 , ≤ 9.3.3P16 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:51:46.174Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0",
                  "status": "affected",
                  "version": "11.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.4",
                  "status": "affected",
                  "version": "10.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.2.7",
                  "status": "affected",
                  "version": "10.2",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.1.9",
                  "status": "affected",
                  "version": "10.1",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.0.12",
                  "status": "affected",
                  "version": "10.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "9.3.3P16",
                  "status": "affected",
                  "version": "9.3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user\u2019s password."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-05-02T22:05:13.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
            }
          ],
          "source": {
            "advisory": "SECBL021",
            "defect": [
              "PF-30450"
            ],
            "discovery": "INTERNAL"
          },
          "title": "PingFederate Password Reset via Authentication API Mishandling",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2022-23722",
              "STATE": "PUBLIC",
              "TITLE": "PingFederate Password Reset via Authentication API Mishandling"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0",
                                "version_value": "11.0"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.3",
                                "version_value": "10.3.4"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.2",
                                "version_value": "10.2.7"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.1",
                                "version_value": "10.1.9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.0",
                                "version_value": "10.0.12"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "9.3",
                                "version_value": "9.3.3P16"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user\u2019s password."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-288 Authentication Bypass Using an Alternate Path or Channel"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
                }
              ]
            },
            "source": {
              "advisory": "SECBL021",
              "defect": [
                "PF-30450"
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-23722",
        "datePublished": "2022-05-02T22:05:13.000Z",
        "dateReserved": "2022-01-19T00:00:00.000Z",
        "dateUpdated": "2024-08-03T03:51:46.174Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42000 (GCVE-0-2021-42000)

    Vulnerability from nvd – Published: 2022-02-10 22:30 – Updated: 2024-08-04 03:22
    VLAI
    Title
    Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows
    Summary
    When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 9.3.3-P15 , < 9.3.0* (custom)
    Affected: 10.0.11 , < 10.0.0* (custom)
    Affected: 10.1.8 , < 10.1.0* (custom)
    Affected: 10.2.6 , < 10.2.0* (custom)
    Affected: 10.3.2 , < 10.3.0* (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:22:25.779Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "9.3.0*",
                  "status": "affected",
                  "version": "9.3.3-P15",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.0.0*",
                  "status": "affected",
                  "version": "10.0.11",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0*",
                  "status": "affected",
                  "version": "10.1.8",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.2.0*",
                  "status": "affected",
                  "version": "10.2.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.3.0*",
                  "status": "affected",
                  "version": "10.3.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-285",
                  "description": "CWE-285 Improper Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-02-10T22:30:11.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "PingFederate product patched versions 9.3.3-P16, 10.0.12, 10.1.9, 10.2.7, 10.3.3"
            }
          ],
          "source": {
            "advisory": "SECBL020",
            "defect": [
              "PF-29924"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-42000",
              "STATE": "PUBLIC",
              "TITLE": "Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003e=",
                                "version_name": "9.3.0",
                                "version_value": "9.3.3-P15"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.0.0",
                                "version_value": "10.0.11"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.1.0",
                                "version_value": "10.1.8"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.2.0",
                                "version_value": "10.2.6"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.3.0",
                                "version_value": "10.3.2"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-285 Improper Authorization"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
                }
              ]
            },
            "solution": [
              {
                "lang": "en",
                "value": "PingFederate product patched versions 9.3.3-P16, 10.0.12, 10.1.9, 10.2.7, 10.3.3"
              }
            ],
            "source": {
              "advisory": "SECBL020",
              "defect": [
                "PF-29924"
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-42000",
        "datePublished": "2022-02-10T22:30:11.000Z",
        "dateReserved": "2021-10-04T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:22:25.779Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-41770 (GCVE-0-2021-41770)

    Vulnerability from nvd – Published: 2021-10-07 06:24 – Updated: 2024-08-04 03:15
    VLAI
    Summary
    Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Credits
    Ping Identity credits An Trinh of Calif. for their responsible disclosure.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:15:29.278Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Ping Identity credits An Trinh of Calif. for their responsible disclosure."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-18T14:30:11.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-41770",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Ping Identity credits An Trinh of Calif. for their responsible disclosure."
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-41770",
        "datePublished": "2021-10-07T06:24:36.000Z",
        "dateReserved": "2021-09-28T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:15:29.278Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40329 (GCVE-0-2021-40329)

    Vulnerability from nvd – Published: 2021-09-27 16:22 – Updated: 2024-08-04 02:27
    VLAI
    Summary
    The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management.
    Severity
    No CVSS data available.
    CWE
    • Incorrect Access Control
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.919Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.2.3"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.3.3"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.9"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.1.6"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.2.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Incorrect Access Control",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-01T18:44:06.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-40329",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.2.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.3.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.0.9"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.1.6"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.2.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Incorrect Access Control"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html",
                  "refsource": "CONFIRM",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-40329",
        "datePublished": "2021-09-27T16:22:11.000Z",
        "dateReserved": "2021-08-30T00:00:00.000Z",
        "dateUpdated": "2024-08-04T02:27:31.919Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-8489 (GCVE-0-2014-8489)

    Vulnerability from nvd – Published: 2014-12-12 15:00 – Updated: 2024-08-06 13:18
    VLAI
    Summary
    Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2014-12-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T13:18:48.304Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-12-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-12-12T13:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-8489",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
                  "refsource": "FULLDISC",
                  "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
                },
                {
                  "name": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/",
                  "refsource": "MISC",
                  "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
                },
                {
                  "name": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-8489",
        "datePublished": "2014-12-12T15:00:00.000Z",
        "dateReserved": "2014-10-26T00:00:00.000Z",
        "dateUpdated": "2024-08-06T13:18:48.304Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-22377 (GCVE-0-2024-22377)

    Vulnerability from cvelistv5 – Published: 2024-07-09 23:03 – Updated: 2024-08-01 22:43
    VLAI
    Title
    PingFederate Runtime Node Path Traversal
    Summary
    The deploy directory in PingFederate runtime nodes is reachable to unauthorized users.
    SSVC
    Exploitation: none Automatable: yes Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
    Affected: 12.0.0 (custom)
    Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Create a notification for this product.
    pingidentity pingfederate Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
        cpe:2.3:a:pingidentity:pingfederate:10.3.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.0.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.1.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.2.0:*:*:*:*:*:*:*
        cpe:2.3:a:pingidentity:pingfederate:11.3.0:*:*:*:*:*:*:*
    Create a notification for this product.
    pingidentity pingfederate Affected: 12.0.0
        cpe:2.3:a:pingidentity:pingfederate:12.0.0:*:*:*:*:*:*:*
    Create a notification for this product.
    Date Public
    2024-07-09 22:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:10.3.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.0.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.1.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.2.0:*:*:*:*:*:*:*",
                  "cpe:2.3:a:pingidentity:pingfederate:11.3.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "lessThanOrEqual": "10.3.13",
                    "status": "affected",
                    "version": "10.3.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.0.9",
                    "status": "affected",
                    "version": "11.0.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.1.9",
                    "status": "affected",
                    "version": "11.1.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.2.8",
                    "status": "affected",
                    "version": "11.2.0",
                    "versionType": "custom"
                  },
                  {
                    "lessThanOrEqual": "11.3.4",
                    "status": "affected",
                    "version": "11.3.0",
                    "versionType": "custom"
                  }
                ]
              },
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:12.0.0:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "status": "affected",
                    "version": "12.0.0"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-22377",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "yes"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-15T13:15:10.302158Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-23T16:13:24.203Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T22:43:34.512Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0.9",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.9",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.8",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.3.4",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                },
                {
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.13",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue.\u003cbr\u003e"
                }
              ],
              "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue."
            }
          ],
          "datePublic": "2024-07-09T22:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The deploy directory in PingFederate runtime nodes is reachable to unauthorized users.\u003cbr\u003e"
                }
              ],
              "value": "The deploy directory in PingFederate runtime nodes is reachable to unauthorized users."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-126",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-126 Path Traversal"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-22",
                  "description": "CWE-22 Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-09T23:03:27.722Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate Runtime Node Path Traversal",
          "workarounds": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "The deploy directory can be restricted by making changes to runtime jetty configuration.\u0026nbsp;\u0026nbsp;\u003cbr\u003e"
                }
              ],
              "value": "The deploy directory can be restricted by making changes to runtime jetty configuration."
            }
          ],
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2024-22377",
        "datePublished": "2024-07-09T23:03:27.722Z",
        "dateReserved": "2024-01-17T17:27:24.578Z",
        "dateUpdated": "2024-08-01T22:43:34.512Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2024-22477 (GCVE-0-2024-22477)

    Vulnerability from cvelistv5 – Published: 2024-07-09 23:01 – Updated: 2024-08-01 22:51
    VLAI
    Title
    PingFederate OIDC Policy Management Editor Cross-Site Scripting
    Summary
    A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-79 - Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0.0 , ≤ 11.0.9 (custom)
    Affected: 11.1.0 , ≤ 11.1.9 (custom)
    Affected: 11.2.0 , ≤ 11.2.8 (custom)
    Affected: 11.3.0 , ≤ 11.3.4 (custom)
    Affected: 12.0.0 (custom)
    Affected: 10.3.0 , ≤ 10.3.13 (custom)
    Create a notification for this product.
    Date Public
    2024-07-09 22:27
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2024-22477",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-07-10T13:29:31.833138Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-07-10T13:30:14.614Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          },
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-01T22:51:09.905Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "collectionURL": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0.9",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.9",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.8",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.3.4",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                },
                {
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.13",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue.\u003cbr\u003e"
                }
              ],
              "value": "All instances of PingFederate on vulnerable versions are vulnerable to this issue."
            }
          ],
          "datePublic": "2024-07-09T22:27:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.\u003cbr\u003e"
                }
              ],
              "value": "A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-592",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-592 Stored XSS"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 1.8,
                "baseSeverity": "LOW",
                "confidentialityImpact": "NONE",
                "integrityImpact": "LOW",
                "privilegesRequired": "HIGH",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-79",
                  "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or \u0027Cross-site Scripting\u0027)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-07-09T23:01:28.611Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate OIDC Policy Management Editor Cross-Site Scripting",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2024-22477",
        "datePublished": "2024-07-09T23:01:28.611Z",
        "dateReserved": "2024-01-17T17:27:24.603Z",
        "dateUpdated": "2024-08-01T22:51:09.905Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-40545 (GCVE-0-2023-40545)

    Vulnerability from cvelistv5 – Published: 2024-02-06 17:27 – Updated: 2024-08-22 16:53
    VLAI
    Title
    PingFederate OAuth client_secret_jwt Authentication Bypass
    Summary
    Authentication bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-306 - Missing Authentication for Critical Function
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3.0 , ≤ 11.3.2 (custom)
    Create a notification for this product.
    pingidentity pingfederate Affected: 11.3.0 , ≤ 11.3.2 (custom)
        cpe:2.3:a:pingidentity:pingfederate:*:*:*:*:*:*:*:*
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:38:50.649Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://support.pingidentity.com/s/article/SECADV040-PingFederate-OAuth-Client-Authentication-Bypass"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate/previous-releases.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/hro1701116403236"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "affected": [
              {
                "cpes": [
                  "cpe:2.3:a:pingidentity:pingfederate:*:*:*:*:*:*:*:*"
                ],
                "defaultStatus": "unaffected",
                "product": "pingfederate",
                "vendor": "pingidentity",
                "versions": [
                  {
                    "lessThanOrEqual": "11.3.2",
                    "status": "affected",
                    "version": "11.3.0",
                    "versionType": "custom"
                  }
                ]
              }
            ],
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-40545",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-08-22T16:50:41.466461Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-08-22T16:53:12.079Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.2",
                  "status": "affected",
                  "version": "11.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAuthentication\u0026nbsp;bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "Authentication\u00a0bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-306",
                  "description": "CWE-306 Missing Authentication for Critical Function",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2024-02-06T17:28:00.505Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://support.pingidentity.com/s/article/SECADV040-PingFederate-OAuth-Client-Authentication-Bypass"
            },
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate/previous-releases.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/hro1701116403236"
            }
          ],
          "source": {
            "advisory": "SECADV040",
            "defect": [
              "PF-34645"
            ],
            "discovery": "UNKNOWN"
          },
          "title": "PingFederate OAuth client_secret_jwt Authentication Bypass",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-40545",
        "datePublished": "2024-02-06T17:27:42.361Z",
        "dateReserved": "2023-08-25T16:59:38.674Z",
        "dateUpdated": "2024-08-22T16:53:12.079Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-34085 (GCVE-0-2023-34085)

    Vulnerability from cvelistv5 – Published: 2023-10-25 02:03 – Updated: 2024-09-10 15:05
    VLAI
    Title
    User Attribute Disclosure via DynamoDB Data Stores
    Summary
    When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-359 - Exposure of Private Personal Information to an Unauthorized Actor
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T16:01:53.879Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-34085",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2024-09-10T15:00:49.766852Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2024-09-10T15:05:08.099Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "configurations": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "AWS DynamoDB as user attribute store"
                }
              ],
              "value": "AWS DynamoDB as user attribute store"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: transparent;\"\u003eWhen an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "When an AWS DynamoDB table is used for user attribute storage, it is possible to retrieve the attributes of another user using a maliciously crafted request\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-153",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-153 Input Data Manipulation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 2.6,
                "baseSeverity": "LOW",
                "confidentialityImpact": "LOW",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-359",
                  "description": "CWE-359: Exposure of Private Personal Information to an Unauthorized Actor",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T02:03:56.433Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-33935"
            ],
            "discovery": "INTERNAL"
          },
          "title": "User Attribute Disclosure via DynamoDB Data Stores",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-34085",
        "datePublished": "2023-10-25T02:03:56.433Z",
        "dateReserved": "2023-07-25T20:13:14.876Z",
        "dateUpdated": "2024-09-10T15:05:08.099Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-39219 (GCVE-0-2023-39219)

    Vulnerability from cvelistv5 – Published: 2023-10-25 01:44 – Updated: 2025-06-12 14:58
    VLAI
    Title
    Admin Console Denial of Service via Java class enumeration
    Summary
    PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-400 - Uncontrolled Resource Consumption
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Affected: 11.2.0 , ≤ 11.2.6 (custom)
    Affected: 11.1.0 , ≤ 11.1.7 (custom)
    Affected: 10.3.0 , ≤ 10.3.12 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T18:02:06.169Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2023-39219",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-12T14:58:09.523502Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-12T14:58:40.168Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.6",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.7",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.12",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003ePingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "PingFederate Administrative Console dependency contains a weakness where console becomes unresponsive with crafted Java class loading enumeration requests\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-131",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-131 Resource Leak Exposure"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-400",
                  "description": "CWE-400: Uncontrolled Resource Consumption",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T01:44:44.362Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-33449"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Admin Console Denial of Service via Java class enumeration",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-39219",
        "datePublished": "2023-10-25T01:44:44.362Z",
        "dateReserved": "2023-07-25T20:13:14.871Z",
        "dateUpdated": "2025-06-12T14:58:40.168Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2023-37283 (GCVE-0-2023-37283)

    Vulnerability from cvelistv5 – Published: 2023-10-25 01:24 – Updated: 2024-08-02 17:09
    VLAI
    Title
    Authentication Bypass via HTML Form & Identifier First Adapter
    Summary
    Under a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter
    CWE
    • CWE-287 - Improper Authentication
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.3 , ≤ 11.3.0 (custom)
    Affected: 11.2.0 , ≤ 11.2.6 (custom)
    Affected: 11.1.0 , ≤ 11.1.7 (custom)
    Affected: 10.3.0 , ≤ 10.3.12 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-02T17:09:34.014Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.3.0",
                  "status": "affected",
                  "version": "11.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.6",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.7",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.12",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eUnder a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter\u003c/span\u003e\u003cbr\u003e"
                }
              ],
              "value": "Under a very specific and highly unrecommended configuration, authentication bypass is possible in the PingFederate Identifier First Adapter\n"
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-115",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-115 Authentication Bypass"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-287",
                  "description": "CWE-287 Improper Authentication",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-10-25T01:24:47.780Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-113/gyk1689105783244"
            }
          ],
          "source": {
            "advisory": "SECADV037",
            "defect": [
              "PF-34017"
            ],
            "discovery": "EXTERNAL"
          },
          "title": "Authentication Bypass via HTML Form \u0026 Identifier First Adapter",
          "x_generator": {
            "engine": "Vulnogram 0.1.0-dev"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2023-37283",
        "datePublished": "2023-10-25T01:24:47.780Z",
        "dateReserved": "2023-07-25T20:13:14.866Z",
        "dateUpdated": "2024-08-02T17:09:34.014Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40724 (GCVE-0-2022-40724)

    Vulnerability from cvelistv5 – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:48
    VLAI
    Title
    Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint.
    Summary
    The PingFederate Local Identity Profiles '/pf/idprofile.ping' endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 10.3.0 , < 10.3.0* (custom)
    Affected: 10.3.11 , ≤ 10.3.11 (custom)
    Affected: 11.0.0 , < 11.0.0* (custom)
    Affected: 11.0.6 , ≤ 11.0.6 (custom)
    Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.720Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingfederate-110/fll1675188537050"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40724",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:48:27.864493Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:48:33.050Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "10.3.0*",
                  "status": "affected",
                  "version": "10.3.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.11",
                  "status": "affected",
                  "version": "10.3.11",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.0*",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.0.6",
                  "status": "affected",
                  "version": "11.0.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The PingFederate Local Identity Profiles \u0027/pf/idprofile.ping\u0027 endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 6.4,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "exploitCodeMaturity": "HIGH",
                "integrityImpact": "LOW",
                "privilegesRequired": "NONE",
                "remediationLevel": "UNAVAILABLE",
                "reportConfidence": "CONFIRMED",
                "scope": "UNCHANGED",
                "temporalScore": 6.4,
                "temporalSeverity": "MEDIUM",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:H/E:H/RL:U/RC:C",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingfederate-110/fll1675188537050"
            }
          ],
          "source": {
            "advisory": "SECADV033",
            "defect": [
              "PF-32805"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Cross-Site Request Forgery on PingFederate Local Identity Profiles Endpoint."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40724",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:48:33.050Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40722 (GCVE-0-2022-40722)

    Vulnerability from cvelistv5 – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:49
    VLAI
    Title
    Misconfiguration of RSA padding for offline MFA in the PingID Adapter for PingFederate.
    Summary
    A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-780 - Use of RSA Algorithm without OAEP
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingID Adapter for PingFederate Affected: 2.13.2 , < 2.13.2 (custom)
    Create a notification for this product.
    Ping Identity PingID Integration Kit (includes PingID Adapter) Affected: 2.24 , < 2.24 (custom)
    Create a notification for this product.
    Ping Identity PingFederate (includes PingID Adapter) Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Credits
    Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.770Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_20_rn"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_adapter_configuring_offline_mfa"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40722",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:49:10.680225Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:49:20.723Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingID Adapter for PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.13.2",
                  "status": "affected",
                  "version": "2.13.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingID Integration Kit (includes PingID Adapter)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.24",
                  "status": "affected",
                  "version": "2.24",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingFederate (includes PingID Adapter)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 7.7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-780",
                  "description": "CWE-780 Use of RSA Algorithm without OAEP",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_20_rn"
            },
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_adapter_configuring_offline_mfa"
            }
          ],
          "source": {
            "advisory": "SECADV035",
            "defect": [
              "PIM-2677"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Misconfiguration of RSA padding for offline MFA in the PingID Adapter for PingFederate."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40722",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:49:20.723Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-40723 (GCVE-0-2022-40723)

    Vulnerability from cvelistv5 – Published: 2023-04-25 00:00 – Updated: 2025-02-04 14:48
    VLAI
    Title
    Configuration-based MFA Bypass in PingID RADIUS PCV.
    Summary
    The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-305 - Authentication Bypass by Primary Weakness
    Assigner
    Impacted products
    Vendor Product Version
    Ping Identity PingID Radius PCV Affected: 2.10.0
    Affected: 3.0.0 , < 3.0.0* (custom)
    Affected: 3.0.2 , ≤ 3.0.2 (custom)
    Create a notification for this product.
    Ping Identity PingID Integration Kit (includes Radius PCV) Affected: 2.24 , < 2.24 (custom)
    Create a notification for this product.
    Ping Identity PingFederate (includes Radius PCV) Affected: 11.1.0 , < 11.1.0* (custom)
    Affected: 11.1.5 , ≤ 11.1.5 (custom)
    Affected: 11.2.0 , < 11.2.0* (custom)
    Affected: 11.2.2 , ≤ 11.2.2 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T12:21:46.787Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_19_rn"
              }
            ],
            "title": "CVE Program Container"
          },
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2022-40723",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-02-04T14:48:50.451839Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-02-04T14:48:54.313Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingID Radius PCV",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "2.10.0"
                },
                {
                  "lessThan": "3.0.0*",
                  "status": "affected",
                  "version": "3.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "3.0.2",
                  "status": "affected",
                  "version": "3.0.2",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingID Integration Kit (includes Radius PCV)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "2.24",
                  "status": "affected",
                  "version": "2.24",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "PingFederate (includes Radius PCV)",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "11.1.0*",
                  "status": "affected",
                  "version": "11.1.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.1.5",
                  "status": "affected",
                  "version": "11.1.5",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.2.0*",
                  "status": "affected",
                  "version": "11.2.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "11.2.2",
                  "status": "affected",
                  "version": "11.2.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitCodeMaturity": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "remediationLevel": "UNAVAILABLE",
                "reportConfidence": "CONFIRMED",
                "scope": "UNCHANGED",
                "temporalScore": 6.5,
                "temporalSeverity": "MEDIUM",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:H/RL:U/RC:C",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-305",
                  "description": "CWE-305 Authentication Bypass by Primary Weakness",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-04-25T00:00:00.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "url": "https://docs.pingidentity.com/r/en-us/pingid/pingid_integration_kit_2_19_rn"
            }
          ],
          "source": {
            "advisory": "SECADV035",
            "defect": [
              "PIM-3774"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Configuration-based MFA Bypass in PingID RADIUS PCV."
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-40723",
        "datePublished": "2023-04-25T00:00:00.000Z",
        "dateReserved": "2022-09-14T00:00:00.000Z",
        "dateUpdated": "2025-02-04T14:48:54.313Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2022-23722 (GCVE-0-2022-23722)

    Vulnerability from cvelistv5 – Published: 2022-05-02 22:05 – Updated: 2024-08-03 03:51
    VLAI
    Title
    PingFederate Password Reset via Authentication API Mishandling
    Summary
    When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user’s password.
    Severity
    No CVSS data available.
    CWE
    • CWE-288 - Authentication Bypass Using an Alternate Path or Channel
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 11.0 , ≤ 11.0 (custom)
    Affected: 10.3 , ≤ 10.3.4 (custom)
    Affected: 10.2 , ≤ 10.2.7 (custom)
    Affected: 10.1 , ≤ 10.1.9 (custom)
    Affected: 10.0 , ≤ 10.0.12 (custom)
    Affected: 9.3 , ≤ 9.3.3P16 (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T03:51:46.174Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThanOrEqual": "11.0",
                  "status": "affected",
                  "version": "11.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.3.4",
                  "status": "affected",
                  "version": "10.3",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.2.7",
                  "status": "affected",
                  "version": "10.2",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.1.9",
                  "status": "affected",
                  "version": "10.1",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "10.0.12",
                  "status": "affected",
                  "version": "10.0",
                  "versionType": "custom"
                },
                {
                  "lessThanOrEqual": "9.3.3P16",
                  "status": "affected",
                  "version": "9.3",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user\u2019s password."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-288",
                  "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-05-02T22:05:13.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
            }
          ],
          "source": {
            "advisory": "SECBL021",
            "defect": [
              "PF-30450"
            ],
            "discovery": "INTERNAL"
          },
          "title": "PingFederate Password Reset via Authentication API Mishandling",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2022-23722",
              "STATE": "PUBLIC",
              "TITLE": "PingFederate Password Reset via Authentication API Mishandling"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c=",
                                "version_name": "11.0",
                                "version_value": "11.0"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.3",
                                "version_value": "10.3.4"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.2",
                                "version_value": "10.2.7"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.1",
                                "version_value": "10.1.9"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "10.0",
                                "version_value": "10.0.12"
                              },
                              {
                                "version_affected": "\u003c=",
                                "version_name": "9.3",
                                "version_value": "9.3.3P16"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "When a password reset mechanism is configured to use the Authentication API with an Authentication Policy, email One-Time Password, PingID or SMS authentication, an existing user can reset another existing user\u2019s password."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-288 Authentication Bypass Using an Alternate Path or Channel"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-110/page/spk1642790928508.html"
                }
              ]
            },
            "source": {
              "advisory": "SECBL021",
              "defect": [
                "PF-30450"
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2022-23722",
        "datePublished": "2022-05-02T22:05:13.000Z",
        "dateReserved": "2022-01-19T00:00:00.000Z",
        "dateUpdated": "2024-08-03T03:51:46.174Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-42000 (GCVE-0-2021-42000)

    Vulnerability from cvelistv5 – Published: 2022-02-10 22:30 – Updated: 2024-08-04 03:22
    VLAI
    Title
    Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows
    Summary
    When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Ping Identity PingFederate Affected: 9.3.3-P15 , < 9.3.0* (custom)
    Affected: 10.0.11 , < 10.0.0* (custom)
    Affected: 10.1.8 , < 10.1.0* (custom)
    Affected: 10.2.6 , < 10.2.0* (custom)
    Affected: 10.3.2 , < 10.3.0* (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:22:25.779Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "lessThan": "9.3.0*",
                  "status": "affected",
                  "version": "9.3.3-P15",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.0.0*",
                  "status": "affected",
                  "version": "10.0.11",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0*",
                  "status": "affected",
                  "version": "10.1.8",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.2.0*",
                  "status": "affected",
                  "version": "10.2.6",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.3.0*",
                  "status": "affected",
                  "version": "10.3.2",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-285",
                  "description": "CWE-285 Improper Authorization",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2022-02-10T22:30:11.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "value": "PingFederate product patched versions 9.3.3-P16, 10.0.12, 10.1.9, 10.2.7, 10.3.3"
            }
          ],
          "source": {
            "advisory": "SECBL020",
            "defect": [
              "PF-29924"
            ],
            "discovery": "INTERNAL"
          },
          "title": "Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows",
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-42000",
              "STATE": "PUBLIC",
              "TITLE": "Ping Identity PingFederate Password Reset and Password Change Mishandling with an authentication policy in parallel reset flows"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003e=",
                                "version_name": "9.3.0",
                                "version_value": "9.3.3-P15"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.0.0",
                                "version_value": "10.0.11"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.1.0",
                                "version_value": "10.1.8"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.2.0",
                                "version_value": "10.2.6"
                              },
                              {
                                "version_affected": "\u003e=",
                                "version_name": "10.3.0",
                                "version_value": "10.3.2"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "When a password reset or password change flow with an authentication policy is configured and the adapter in the reset or change policy supports multiple parallel reset flows, an existing user can reset another existing users password."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "impact": {
              "cvss": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 5.3,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
                "version": "3.1"
              }
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-285 Improper Authorization"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/hhm1634833631515.html"
                }
              ]
            },
            "solution": [
              {
                "lang": "en",
                "value": "PingFederate product patched versions 9.3.3-P16, 10.0.12, 10.1.9, 10.2.7, 10.3.3"
              }
            ],
            "source": {
              "advisory": "SECBL020",
              "defect": [
                "PF-29924"
              ],
              "discovery": "INTERNAL"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-42000",
        "datePublished": "2022-02-10T22:30:11.000Z",
        "dateReserved": "2021-10-04T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:22:25.779Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-41770 (GCVE-0-2021-41770)

    Vulnerability from cvelistv5 – Published: 2021-10-07 06:24 – Updated: 2024-08-04 03:15
    VLAI
    Summary
    Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Credits
    Ping Identity credits An Trinh of Calif. for their responsible disclosure.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T03:15:29.278Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "Ping Identity credits An Trinh of Calif. for their responsible disclosure."
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-18T14:30:11.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-41770",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "Ping Identity credits An Trinh of Calif. for their responsible disclosure."
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Ping Identity PingFederate before 10.3.1 mishandles pre-parsing validation, leading to an XXE attack that can achieve XML file disclosure."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html",
                  "refsource": "MISC",
                  "url": "https://www.pingidentity.com/en/resources/downloads/pingfederate.html"
                },
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html",
                  "refsource": "MISC",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/ruz1628492711606.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-41770",
        "datePublished": "2021-10-07T06:24:36.000Z",
        "dateReserved": "2021-09-28T00:00:00.000Z",
        "dateUpdated": "2024-08-04T03:15:29.278Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-40329 (GCVE-0-2021-40329)

    Vulnerability from cvelistv5 – Published: 2021-09-27 16:22 – Updated: 2024-08-04 02:27
    VLAI
    Summary
    The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management.
    Severity
    No CVSS data available.
    CWE
    • Incorrect Access Control
    Assigner
    References
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T02:27:31.919Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.2.3"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.3.3"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.0.9"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.1.6"
                }
              ]
            },
            {
              "product": "PingFederate",
              "vendor": "Ping Identity",
              "versions": [
                {
                  "status": "affected",
                  "version": "10.2.3"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Incorrect Access Control",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-10-01T18:44:06.000Z",
            "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
            "shortName": "Ping Identity"
          },
          "references": [
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "responsible-disclosure@pingidentity.com",
              "ID": "CVE-2021-40329",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.2.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "9.3.3"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.0.9"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.1.6"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "PingFederate",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "10.2.3"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ping Identity"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The Authentication API in Ping Identity PingFederate before 10.3 mishandles certain aspects of external password management."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "Incorrect Access Control"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html",
                  "refsource": "CONFIRM",
                  "url": "https://docs.pingidentity.com/bundle/pingfederate-103/page/cou1615333347158.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e",
        "assignerShortName": "Ping Identity",
        "cveId": "CVE-2021-40329",
        "datePublished": "2021-09-27T16:22:11.000Z",
        "dateReserved": "2021-08-30T00:00:00.000Z",
        "dateUpdated": "2024-08-04T02:27:31.919Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2014-8489 (GCVE-0-2014-8489)

    Vulnerability from cvelistv5 – Published: 2014-12-12 15:00 – Updated: 2024-08-06 13:18
    VLAI
    Summary
    Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2014-12-09 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T13:18:48.304Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2014-12-09T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2014-12-12T13:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2014-8489",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Open redirect vulnerability in startSSO.ping in the SP Endpoints in Ping Identity PingFederate 6.10.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the TargetResource parameter."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20141209 CVE-2014-8489 Ping Identity Corporation \"PingFederate 6.10.1 SP Endpoints\" Dest Redirect Privilege Escalation Security Vulnerability",
                  "refsource": "FULLDISC",
                  "url": "http://seclists.org/fulldisclosure/2014/Dec/35"
                },
                {
                  "name": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/",
                  "refsource": "MISC",
                  "url": "http://tetraph.com/security/cves/cve-2014-8489-ping-identity-corporation-pingfederate-6-10-1-sp-endpoints-dest-redirect-privilege-escalation-security-vulnerability/"
                },
                {
                  "name": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html",
                  "refsource": "MISC",
                  "url": "http://packetstormsecurity.com/files/129454/PingFederate-6.10.1-SP-Endpoints-Open-Redirect.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2014-8489",
        "datePublished": "2014-12-12T15:00:00.000Z",
        "dateReserved": "2014-10-26T00:00:00.000Z",
        "dateUpdated": "2024-08-06T13:18:48.304Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }