10 matches found
EUVD-2021-14815
Malware in sbrugna...
CVE-2021-28113
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers with admin access to the Okta Access Gateway UI to execute OS commands as a privileged system account...
Okta Access Gateway 2020.5.5 Authenticated Remote Root Vulnerability
Okta Access Gateway v2020.5.5 Post-Auth Remote Root RCE CVE-2021-28113 ======= Details ======= There are two command injection bugs can that be triggered after authenticating to the web UI. Since the injection occurs when a script is executed with sudo, the commands are ran with root privileges...
Okta Access Gateway 2020.5.5 Authenticated Remote Root
Okta Access Gateway v2020.5.5 Post-Auth Remote Root RCE CVE-2021-28113 ======= Details ======= There are two command injection bugs can that be triggered after authenticating to the web UI. Since the injection occurs when a script is executed with sudo, the commands are ran with root privileges...
CVE-2021-28113
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers with admin access to the Okta Access Gateway UI to execute OS commands as a privileged system account...
CVE-2021-28113
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers with admin access to the Okta Access Gateway UI to execute OS commands as a privileged system account...
Command injection
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers with admin access to the Okta Access Gateway UI to execute OS commands as a privileged system account...
CVE-2021-28113
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers with admin access to the Okta Access Gateway UI to execute OS commands as a privileged system account...
CVE-2021-28113
CVE-2021-28113: Okta Access Gateway before 2020.9.3 has command-injection in cookieDomain/relayDomain parameters. Requires admin access to the UI and can lead to OS command execution as a privileged system account. No explicit remediation details in provided documents; mode of exploitation (UI-au...
Okta Access Gateway 操作系统命令注入漏洞
Okta Access Gateway is an application gateway from Okta UK. It addresses this issue by effectively protecting access to local applications on the same platform that protects your cloud applications, infrastructure and APIs. A security vulnerability exists in Okta Access Gateway before 2020.9.3,...