Pingidentity: >> Pingid Integration Kit Security Vulnerabilities
A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA.
CVSS Score
7.7
EPSS Score
0.0
Published
2023-04-25
The PingID RADIUS PCV adapter for PingFederate, which supports RADIUS authentication with PingID MFA, is vulnerable to MFA bypass under certain configurations.
CVSS Score
6.5
EPSS Score
0.0
Published
2023-04-25