Medium severity6.1NVD Advisory· Published Oct 29, 2024· Updated Jun 17, 2026
CVE-2024-25566
CVE-2024-25566
Description
An Open-Redirect vulnerability exists in PingAM where well-crafted requests may cause improper validation of redirect URLs. This could allow an attacker to redirect end-users to malicious sites under their control, simplifying phishing attacks
Affected products
3- Ping Identity/PingAMv5Range: 7.5.0
Patches
Vulnerability mechanics
References
2- backstage.forgerock.com/knowledge/advisories/article/a63463303nvdMitigationVendor Advisory
- backstage.forgerock.com/downloads/browse/am/featurednvdProduct
News mentions
0No linked articles in our index yet.