Vulnerabilidades em forgerock
7 resultadosCVE-2021-4201CRITICALPre-authentication session hijackingEPSS 1.9%CVE-2023-0511CRITICALAM Java Policy Agent path traversalEPSS 1.0%CVE-2023-0339CRITICALAM Web Policy Agent path traversalEPSS 1.0%CVE-2023-0582HIGHPath Traversal in ForgeRock Access ManagmentEPSS 0.8%CVE-2022-24670HIGHAny user can run unrestricted LDAP queries against a configuration endpointEPSS 0.5%CVE-2022-0143CRITICALLDAP Connector: When startTLS is used then LDAP connector ignores the wrong passwordEPSS 0.5%CVE-2022-24669MEDIUMAnonymous users can register / de-register for configuration change notificationsEPSS 0.4%