54 matches found
DUO-PSA-2014-007: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-007 Publication Date: 2014-10-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue that may allow local users to bypass second factor authentication when using the pamduo component of duounix in...
DUO-PSA-2014-007: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-007 Publication Date: 2014-10-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue that may allow local users to bypass second factor authentication when using the pamduo component of duounix in...
DUO-PSA-2014-006: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-006 Publication Date: 2014-10-09 Revision Date: 2014-10-16 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it may be possible for users to perform certain actions without completing...
DUO-PSA-2014-006: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-006 Publication Date: 2014-10-09 Revision Date: 2014-10-16 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it may be possible for users to perform certain actions without completing...
DUO-PSA-2014-005: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-005 Publication Date: 2014-05-12 Revision Date: 2014-05-27 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in its Credential-Provider based Remote Desktop Protocol RDP integrations e.g. those...
DUO-PSA-2014-005: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-005 Publication Date: 2014-05-12 Revision Date: 2014-05-27 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in its Credential-Provider based Remote Desktop Protocol RDP integrations e.g. those...
DUO-PSA-2014-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-004 Original Publication Date: 2014-02-12 Revision Date: 2014-03-27 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of multisite...
DUO-PSA-2014-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-004 Original Publication Date: 2014-02-12 Revision Date: 2014-03-27 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of multisite...
DUO-PSA-2014-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-003 Publication Date: 2014-01-27 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of Remote Desktop Protocol RDP integrations which are...
DUO-PSA-2014-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-003 Publication Date: 2014-01-27 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of Remote Desktop Protocol RDP integrations which are...
DUO-PSA-2014-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-002 Publication Date: 2014-01-09 Status: Confirmed, Unfixed Document Revision: 3 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of Remote Desktop Web Access and Remote Desktop...
DUO-PSA-2014-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-002 Publication Date: 2014-01-09 Status: Confirmed, Unfixed Document Revision: 3 Overview Duo Security has identified an issue in which it is possible to bypass second factor authentication of Remote Desktop Web Access and Remote Desktop...
DUO-PSA-2014-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-001 Publication Date: 2014-01-08 Status: Confirmed, Fixed Document Revision: 2 Overview Older versions of the Duo Security Outlook Web Access OWA integration may be vulnerable to a bypass of the second authentication factor. Description Unde...
DUO-PSA-2014-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-001 Publication Date: 2014-01-08 Status: Confirmed, Fixed Document Revision: 2 Overview Older versions of the Duo Security Outlook Web Access OWA integration may be vulnerable to a bypass of the second authentication factor. Description Unde...
DUO-PSA-2020-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...
DUO-PSA-2020-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-004 CVE: CVE-2020-3483 Publication Date: 2020-08-13 Revision Date: 2020-08-13 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Network Gateway DNG product in which some customer-provid...
DUO-PSA-2019-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2019-002 CVE: CVE-2019-3465 Publication Date: 2019-11-12 Revision Date: 2019-11-12 Status: Confirmed, Fixed Document Revision: 1 Overview A third-party software library, which the Duo Access Gateway DAG uses to enable SAML as a first-factor...
DUO-PSA-2016-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2016-002 Publication Date: 2016-12-14 Revision Date: 2016-12-21 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the Duo Authentication Proxy which, under certain uncommon configurations, could enable...
DUO-PSA-2019-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2019-002 CVE: CVE-2019-3465 Publication Date: 2019-11-12 Revision Date: 2019-11-12 Status: Confirmed, Fixed Document Revision: 1 Overview A third-party software library, which the Duo Access Gateway DAG uses to enable SAML as a first-factor...
DUO-PSA-2017-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-002 Publication Date: 2017-05-31 Revision Date: 2017-05-31 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue in duounix, which, under certain uncommon configurations, could enable attackers to bypass...
DUO-PSA-2017-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-001 Publication Date: 2017-03-14 Revision Date: 2017-03-14 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue in our cloud service which, under certain configurations, could have enabled attackers wh...
DUO-PSA-2018-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-004 Publication Date: 2018-12-18 Revision Date: 2018-12-18 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Access Gateway DAG. This issue could have allowed for data exposure on the...
DUO-PSA-2020-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-003 Publication Date: 2020-06-30 Revision Date: 2020-06-30 Status: Confirmed, Fixed Document Revision: 2 Overview Duo has identified and fixed an issue in the Duo Connect client that allows end-users to choose insecure configurations. If...
DUO-PSA-2018-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-003 Publication Date: 2018-05-31 Revision Date: 2018-05-31 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with our documentation for the Duo Authentication Proxy integration with VMware Horizon...
DUO-PSA-2021-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2021-001 Publication Date: 2021-04-15 Revision Date: 2021-04-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has fixed an issue that could have allowed an attacker with primary credentials of another user to bypass...
DUO-PSA-2016-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2016-001 Original Publication Date: 2016-05-11 Revision Date: 2016-05-23 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified multiple issues in the Duo Authentication Proxy which, under certain configurations, could...
DUO-PSA-2020-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-001 Publication Date: 2020-03-19 Revision Date: 2020-03-19 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with Directory Sync where enrollment emails were sent to users regardless of whether the...
DUO-PSA-2017-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-001 Publication Date: 2017-03-14 Revision Date: 2017-03-14 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue in our cloud service which, under certain configurations, could have enabled attackers wh...
DUO-PSA-2018-004: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-004 Publication Date: 2018-12-18 Revision Date: 2018-12-18 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo Access Gateway DAG. This issue could have allowed for data exposure on the...
DUO-PSA-2018-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-003 Publication Date: 2018-05-31 Revision Date: 2018-05-31 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with our documentation for the Duo Authentication Proxy integration with VMware Horizon...
DUO-PSA-2016-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2016-002 Publication Date: 2016-12-14 Revision Date: 2016-12-21 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the Duo Authentication Proxy which, under certain uncommon configurations, could enable...
DUO-PSA-2018-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-002 Publication Date: 2018-05-23 Revision Date: 2018-05-23 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo administrative panel. This issue could have allowed for a second-factor bypa...
DUO-PSA-2015-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2015-001 Original Publication Date: 2015-02-03 Revision Date: 2015-02-10 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in certain versions of the Duo Web SDK that could allow attackers to bypass prima...
DUO-PSA-2020-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-002 Publication Date: 2020-04-28 Revision Date: 2020-04-28 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Engineering has identified and fixed an issue with directory sync for on-premises Microsoft Active Directory, OpenLDAP, and...
DUO-PSA-2015-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2015-002 Original Publication Date: 2015-04-06 Revision Date: 2015-04-13 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in recent versions of Duo Mobile for iOS that could allow attackers to perform a...
DUO-PSA-2016-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2016-001 Original Publication Date: 2016-05-11 Revision Date: 2016-05-23 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified multiple issues in the Duo Authentication Proxy which, under certain configurations, could...
DUO-PSA-2018-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-002 Publication Date: 2018-05-23 Revision Date: 2018-05-23 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with the Duo administrative panel. This issue could have allowed for a second-factor bypa...
DUO-PSA-2018-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2018-001 Publication Date: 2018-03-06 Revision Date: 2018-03-06 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with our public documentation on the Duo Unix integration. The suggested Pluggable...
DUO-PSA-2019-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2019-001 Publication Date: 2019-04-16 Revision Date: 2019-04-16 Status: Confirmed, Fixed Document Revision: 1 Overview A Duo customer has identified an issue where Duo Authentication for Windows Logon could incorrectly enforce "failmode" followin...
DUO-PSA-2015-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2015-001 Original Publication Date: 2015-02-03 Revision Date: 2015-02-10 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in certain versions of the Duo Web SDK that could allow attackers to bypass prima...
DUO-PSA-2020-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-003 Publication Date: 2020-06-30 Revision Date: 2020-06-30 Status: Confirmed, Fixed Document Revision: 2 Overview Duo has identified and fixed an issue in the Duo Connect client that allows end-users to choose insecure configurations. If...
DUO-PSA-2020-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2020-001 Publication Date: 2020-03-19 Revision Date: 2020-03-19 Status: Confirmed, Fixed Document Revision: 1 Overview Duo has identified and fixed an issue with Directory Sync where enrollment emails were sent to users regardless of whether the...
DUO-PSA-2014-008: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-008 Publication Date: 2014-12-22 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the iOS Duo Mobile app that may allow credentials to be backed up in an encrypted form to a user's local machine...
DUO-PSA-2014-008: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2014-008 Publication Date: 2014-12-22 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the iOS Duo Mobile app that may allow credentials to be backed up in an encrypted form to a user's local machine...
DUO-PSA-2017-002: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-002 Publication Date: 2017-05-31 Revision Date: 2017-05-31 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified an issue in duounix, which, under certain uncommon configurations, could enable attackers to bypass...
DUO-PSA-2015-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2015-003 Original Publication Date: 2015-08-06 Revision Date: 2015-08-10 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue which, under certain configurations, could have enabled attackers to bypass...
DUO-PSA-2021-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2021-001 Publication Date: 2021-04-15 Revision Date: 2021-04-15 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has fixed an issue that could have allowed an attacker with primary credentials of another user to bypass...
DUO-PSA-2017-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-003 Publication Date: 2018-02-27 Revision Date: 2018-02-27 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified a security flaw in a third-party library used in the Duo Network Gateway DNG which, under certain...
DUO-PSA-2017-003: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2017-003 Publication Date: 2018-02-27 Revision Date: 2018-02-27 Status: Confirmed, Fixed Document Revision: 1 Overview Duo Security has identified a security flaw in a third-party library used in the Duo Network Gateway DNG which, under certain...
DUO-PSA-2019-001: Duo Product Security Advisory
Duo Product Security Advisory Advisory ID: DUO-PSA-2019-001 Publication Date: 2019-04-16 Revision Date: 2019-04-16 Status: Confirmed, Fixed Document Revision: 1 Overview A Duo customer has identified an issue where Duo Authentication for Windows Logon could incorrectly enforce "failmode" followin...