Security Advisory

CVE-2023-40545

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-02-06 17:27:42

Last updated 2024-08-22 16:53:12

Assigner Ping Identity

State PUBLISHED

Description

Authentication bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.

← Browse all CVEs View on cve.org ↗