Unrated severityNVD Advisory· Published Apr 2, 2021· Updated Aug 3, 2024
CVE-2021-28113
CVE-2021-28113
Description
A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute OS commands as a privileged system account.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Okta/Access Gatewaydescription
- Range: <2020.9.3
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/163428/Okta-Access-Gateway-2020.5.5-Authenticated-Remote-Root.htmlmitrex_refsource_MISC
- www.okta.com/security-advisories/cve-2021-28113mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.