VYPR

PingFederate Google Adapter

by Pingidentity

CVEs (2)

  • CVE-2025-22854MedJun 15, 2025
    risk 0.45cvss epss 0.00

    Improper handling of non-200 http responses in the PingFederate Google Adapter leads to thread exhaustion under normal usage conditions.

  • CVE-2022-40722Apr 25, 2023
    risk 0.00cvss epss 0.00

    A misconfiguration of RSA padding implemented in the PingID Adapter for PingFederate to support Offline MFA with PingID mobile authenticators is vulnerable to pre-computed dictionary attacks, leading to a bypass of offline MFA.