Bug Bounty

All about electronic devices security
https://mail.bugbounty.com.au/

PingAM Java Agent Vulnerability Allows Attackers to Bypass Security

https://mail.bugbounty.com.au/viewtopic.php?t=1583

Page 1 of 1

PingAM Java Agent Vulnerability Allows Attackers to Bypass Security

Posted: Tue Mar 04, 2025 1:48 pm
by Shane1145
A critical security flaw (CVE-2025-20059) has been identified in supported versions of Ping Identity’s PingAM Java Agent, potentially enabling attackers to bypass policy enforcement and access protected resources.

The vulnerability—classified as a Relative Path Traversal (CWE-23) weakness—affects all PingAM Java Agent deployments integrated with PingOne Advanced Identity Cloud, prompting urgent calls for remediation.


https://gbhackers.com/pingam-java-agent-vulnerability/
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited