CyberSec.Space Logo
Back to CVE Browser

CVE-2021-42001

HIGH
8.0
CVSS Severity Score
EPSS Score0.0160%
EPSS Percentile30.37th
PublishedApr 30, 2022
Last ModifiedNov 21, 2024

Vulnerability Description

PingID Desktop prior to 1.7.3 has a misconfiguration in the encryption libraries which can lead to sensitive data exposure. An attacker capable of exploiting this vulnerability may be able to successfully complete an MFA challenge via OTP.

Affected Platforms (CPE)

πŸ“¦
Pingidentity

Pingid Desktop

< 1.7.3
πŸ“¦
Pingidentity

Pingid Desktop

< 1.7.3

References & Advisories

πŸ”— https://docs.pingidentity.com/bundle/pingid/page/dyt1645545885978.html
πŸ”— https://www.pingidentity.com/en/resources/downloads/pingid.html
πŸ”— https://docs.pingidentity.com/bundle/pingid/page/dyt1645545885978.html
πŸ”— https://www.pingidentity.com/en/resources/downloads/pingid.html

Related Vulnerabilities

CVE-2021-4187310.0

Penguin Aurora TV Box 41502 is a high-end network HD set-top box produced by Tencent Video and Skyworth Digital. An unauthorized a...

CVE-2021-3565210.0

Vulnerability in the Essbase Administration Services product of Oracle Essbase (component: EAS Console). The supported versions th...

CVE-2021-4116310.0

Discourse is an open source platform for community discussion. In affected versions maliciously crafted requests could lead to rem...

CVE-2021-3479510.0

Multiple vulnerabilities in the web-based management interface of the Cisco Catalyst Passive Optical Network (PON) Series Switches...