6 matches found
CVE-2023-40545
Authentication bypass when an OAuth2 Client is using clientsecretjwt as its authentication method on affected 11.3 versions via specially crafted requests...
CVE-2023-40545
creationtimestamp| type| source ---|---|--- 2024-02-06 19:21:31+00:00| seen| https://t.me/ctinow/180263 2024-03-01 12:41:26+00:00| seen| https://t.me/ctinow/197567...
CVE-2023-40545
Authentication bypass when an OAuth2 Client is using clientsecretjwt as its authentication method on affected 11.3 versions via specially crafted requests...
CVE-2023-40545 PingFederate OAuth client_secret_jwt Authentication Bypass
Authentication bypass when an OAuth2 Client is using clientsecretjwt as its authentication method on affected 11.3 versions via specially crafted requests...
CVE-2023-40545
CVE-2023-40545 describes an authentication bypass in PingFederate when an OAuth2 Client uses the client_secret_jwt authentication method on affected PingFederate 11.3 versions via specially crafted requests. Red Hat and NVD entries corroborate the bypass affecting 11.3, with the impact described ...
CVE-2023-40545 PingFederate OAuth client_secret_jwt Authentication Bypass
Authentication bypass when an OAuth2 Client is using clientsecretjwt as its authentication method on affected 11.3 versions via specially crafted requests...