VYPR

Okta Verify

by Okta

CVEs (2)

  • CVE-2024-0980HigMar 28, 2024
    risk 0.46cvss 7.1epss 0.00

    The Auto-update service for Okta Verify for Windows is vulnerable to two flaws which in combination could be used to execute arbitrary code.

  • CVE-2024-9191Nov 1, 2024
    risk 0.00cvss epss 0.00

    The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables attackers in a compromised device to retrieve passwords associated with Desktop MFA passwordless logins. The vulnerability was discovered…