Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Tenable Nessus
Tenable Nessusadded 2023/06/13 12:0 a.m.23 views

Okta Advanced Server Access Client 1.13.1 < 1.68.2 Command Injection

The versions of Okta Advanced Server Access Client installed on the remote host is affected by a command injection vulnerability due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issu...

8.8CVSS8AI score0.01411EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/06/13 12:0 a.m.19 views

Okta Advanced Server Access Client < 1.57.0 Command Injection

The versions of Okta Advanced Server Access Client installed on the remote host is affected by a command injection vulnerability via a specially crafted URL. Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number. %NASLMINLEV...

8.8CVSS8.1AI score0.03837EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2023/06/08 12:0 a.m.4 views

Okta Advanced Server Access Client Installed (Linux)

Binary data oktaadvancedserveraccessclientnixinstalled.nbin...

7.3AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/03/06 12:0 a.m.7 views

CVE-2023-0093

Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser. An outdated library, webbrowser, used by the ASA client was found to be vulnerable to command injection. To exploit this issue, an attacker would need t...

7.9AI score0.01411EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/03/06 12:0 a.m.2 views

PT-2023-16008 · Okta · Okta Advanced Server Access Client

Name of the Vulnerable Software and Affected Versions: Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 Description: The issue is related to command injection due to an outdated third-party library called webbrowser. This library is used by the Okta Advanced Server Access Client...

8.8CVSS8.7AI score0.01411EPSS
Exploits0References4
OSV
OSVadded 2022/03/23 8:15 p.m.2 views

CVE-2022-1030

Okta Advanced Server Access Client for Linux and macOS prior to version 1.58.0 was found to be vulnerable to command injection via a specially crafted URL. An attacker, who has knowledge of a valid team name for the victim and also knows a valid target host where the user has access, can execute...

8.8CVSS5.7AI score0.00362EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2022/02/21 12:0 a.m.2 views

PT-2022-16587 · Okta · Okta Advanced Server Access Client

Name of the Vulnerable Software and Affected Versions: Okta Advanced Server Access Client for Windows versions prior to 1.57.0 Description: The issue is related to command injection via a specially crafted URL. Recommendations: For versions prior to 1.57.0, update to version 1.57.0 or later to...

8.8CVSS8.8AI score0.03837EPSS
Exploits0References6
Rows per page
Query Builder