Description
A cross-site scripting vulnerability exists in the admin console OIDC Policy Management Editor. The impact is contained to admin console users only.
Related CPE's
a
pingidentity
pingfederate
6
References
https://docs.pingidentity.com/r/en-us/pingfederate-120/lwu1707324350083
Broken LinkVendor Advisory
CVSS impact metrics
CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
4.3 · Medium
CVSS V3.1
CVSS V3.0
CVSS V2.0
Information
Source identifier
Vulnerability status
Analyzed
Published
2024-07-09T23:15:10.827
3 months agoLast modified
2024-08-19T14:21:51.203
2 months ago