Maven package
org.wso2.carbon.identity.framework/org.wso2.carbon.identity.application.authentication.framework
pkg:maven/org.wso2.carbon.identity.framework/org.wso2.carbon.identity.application.authentication.framework
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-6837 | Hig | 8.5 | < 5.20.254 | 5.20.254 | Dec 15, 2023 | Multiple WSO2 products have been identified as vulnerable to perform user impersonatoin using JIT provisioning. In order for this vulnerability to have any impact on your deployment, following conditions must be met: * An IDP configured for federated authentication and JIT pr |
- affected < 5.20.254fixed 5.20.254
Multiple WSO2 products have been identified as vulnerable to perform user impersonatoin using JIT provisioning. In order for this vulnerability to have any impact on your deployment, following conditions must be met: * An IDP configured for federated authentication and JIT pr