Security Advisory

CVE-2021-41994

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-04-30 21:15:22
Last updated 2024-08-04 03:22:25
Assigner Ping Identity
State PUBLISHED

Description

A misconfiguration of RSA in PingID iOS app prior to 1.19 is vulnerable to pre-computed dictionary attacks, leading to an offline MFA bypass when using PingID Windows Login.