CVE-2022-23723 PingFederate PingOneMFA Integration Kit MFA Bypass

🗓️ 02 May 2022 22:05:15Reported by Ping IdentityType

CVE-2022-23723 PingFederate PingOneMFA Integration Kit MFA Bypas

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-23723	2 May 202222:15	–	attackerkb
Circl	CVE-2022-23723	3 May 202209:48	–	circl
CNNVD	Ping Identity PingFederate授权问题漏洞	2 May 202200:00	–	cnnvd
CVE	CVE-2022-23723	2 May 202222:05	–	cve
EUVD	EUVD-2022-28659	3 Oct 202520:07	–	euvd
NVD	CVE-2022-23723	2 May 202222:15	–	nvd
OSV	CVE-2022-23723	2 May 202222:15	–	osv
Prion	Security feature bypass	2 May 202222:15	–	prion
Positive Technologies	PT-2022-16228 · Ping Identity · Pingfederate Pingone Mfa Integration Kit	2 May 202200:00	–	ptsecurity
RedhatCVE	CVE-2022-23723	5 Feb 202523:29	–	redhatcve

[
  {
    "product": "PingFederate PingOne MFA Integration Kit",
    "vendor": "Ping Identity",
    "versions": [
      {
        "status": "affected",
        "version": "1.4"
      },
      {
        "status": "affected",
        "version": "1.4.1"
      },
      {
        "status": "affected",
        "version": "1.5"
      },
      {
        "status": "affected",
        "version": "1.5.1"
      },
      {
        "status": "affected",
        "version": "1.5.2"
      }
    ]
  }
]

Source	Link
docs	www.docs.pingidentity.com/bundle/pingfederate-pingone-mfa-ik/page/wpt1599064234202.html
pingidentity	www.pingidentity.com/en/resources/downloads/pingfederate.html

02 May 2022 22:05Current

7.9High risk

Vulners AI Score7.9

CVSS 3.17.7

EPSS0.00199

CWE-288