Search Results (Refine Search)

Search Parameters:
  • Results Type: Overview
  • Search Type: Search All
  • CPE Vendor: cpe:/:okta
There are 1 matching records.
Displaying matches 1 through 1.
Vuln ID Summary CVSS Severity

A command injection vulnerability in the cookieDomain and relayDomain parameters of Okta Access Gateway before 2020.9.3 allows attackers (with admin access to the Okta Access Gateway UI) to execute OS commands as a privileged system account.

Published: April 02, 2021; 11:15:13 AM -0400
V3.1: 6.7 MEDIUM
V2.0: 8.7 HIGH