Security Advisory

CVE-2022-40724

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-25 00:00:00

Last updated 2025-02-04 14:48:33

Assigner Ping Identity

State PUBLISHED

The PingFederate Local Identity Profiles /pf/idprofile.ping endpoint is vulnerable to Cross-Site Request Forgery (CSRF) through crafted GET requests.