Unrated severityNVD Advisory· Published Apr 30, 2022· Updated Aug 4, 2024
PingID iOS mobile application prior to 1.19 vulnerable to pre-computed dictionary attacks
CVE-2021-41994
Description
A misconfiguration of RSA in PingID iOS app prior to 1.19 is vulnerable to pre-computed dictionary attacks, leading to an offline MFA bypass when using PingID Windows Login.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <1.19
- Ping Identity/PingID Mobile Applicationv5Range: unspecified
Patches
Vulnerability mechanics
References
2- docs.pingidentity.com/bundle/pingid/page/ejd1642076304199.htmlmitrex_refsource_MISC
- www.pingidentity.com/en/resources/downloads/pingid.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.