Pingid Integration For Windows Login
CVE-2022-23718
HIGH
Severity by source
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionNVD
PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the PingID Windows Login application.
AnalysisAI
PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-1352. PingID Windows Login prior to 2.8 uses known vulnerable components that can lead to remote code execution. An attacker capable of achieving a sophisticated man-in-the-middle position, or to compromise Ping Identity web servers, could deliver malicious code that would be executed as SYSTEM by the PingID Windows Login application. Affected products include: Pingidentity Pingid Integration For Windows Login. Version information: prior to 2.8.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
PingID Integration for Windows Login before 2.4.2 allows local users to gain privileges by modifying CefSharp.BrowserSub
PingID Windows Login prior to 2.8 does not alert or halt operation if it has been provisioned with the full permissions
Use of static encryption key material allows forging an authentication token to other users within a tenant organization
PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security
PingID Windows Login prior to 2.8 does not properly set permissions on the Windows Registry entries used to store sensit
PingID Windows Login prior to 2.8 is vulnerable to a denial of service condition on local machines when combined with us
Share
External POC / Exploit Code
Leaving vuln.today