CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-1697

Okta Active Directory Agent versions 3.8.0 through 3.11.0 installed the Okta AD Agent Update Service using an unquoted path. Note: To remediate this vulnerability, you must uninstall Okta Active Directory Agent and reinstall Okta Active Directory Agent 3.12.0 or greater per the documentation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.4%

CVSS Severity

CVSS v3 Score 3.9

References

https://help.okta.com/en-us/Content/Topics/Directory/ad-agent-update.htm
https://support.okta.com/help/s/article/Security-Notice-CVE-2022-1697-FAQ
https://trust.okta.com/security-advisories/okta-active-directory-agent-cve-2022-1697
https://help.okta.com/en-us/Content/Topics/Directory/ad-agent-update.htm
https://support.okta.com/help/s/article/Security-Notice-CVE-2022-1697-FAQ
https://trust.okta.com/security-advisories/okta-active-directory-agent-cve-2022-1697

Products affected by CVE-2022-1697

Okta » Active Directory Agent » Version: 3.10.0

cpe:2.3:a:okta:active_directory_agent:3.10.0
Okta » Active Directory Agent » Version: 3.11.0

cpe:2.3:a:okta:active_directory_agent:3.11.0
Okta » Active Directory Agent » Version: 3.8.0

cpe:2.3:a:okta:active_directory_agent:3.8.0
Okta » Active Directory Agent » Version: 3.9.0

cpe:2.3:a:okta:active_directory_agent:3.9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-1697

Products

Pricing

Contact Us