PingFederate PingOne MFA Integration Kit: HTML Template MFA Bypass Vulnerability

PingFederate PingOne MFA Integration Kit: HTML Template MFA Bypass Vulnerability

CVE-2022-23723 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

An MFA bypass vulnerability exists in the PingFederate PingOne MFA Integration Kit when adapter HTML templates are used as part of an authentication flow.

Learn more about our Web Application Penetration Testing UK.