Unrated severityNVD Advisory· Published Jun 30, 2022· Updated Aug 3, 2024
PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution
CVE-2022-23718
Description
PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the PingID Windows Login application.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<2.8+ 1 more
- (no CPE)range: <2.8
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
2- docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.htmlmitrex_refsource_MISC
- www.pingidentity.com/en/resources/downloads/pingid.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.