CVE-2023-40545
CVSS V2 None
CVSS V3 None
Description
Authentication bypass when an OAuth2 Client is using client_secret_jwt as its authentication method on affected 11.3 versions via specially crafted requests.
Overview
- CVE ID
- CVE-2023-40545
- Assigner
- Ping Identity
- Vulnerability Status
- PUBLISHED
- Published Version
- 2024-02-06T17:27:42.361Z
- Last Modified Date
- 2024-02-06T17:28:00.505Z
Weakness Enumerations
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2023-40545 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-40545 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2024-06-25 02:06:14 | Added to TrackCVE |