Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PingID Windows Login RSA cryptographic weakness with possible offline MFA bypass
Vulnerability Description
A misconfiguration of RSA in PingID Windows Login prior to 2.7 is vulnerable to pre-computed dictionary attacks, leading to an offline MFA bypass.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N
Vulnerability Type
加密问题
Vulnerability Title
Ping Identity Windows PingId 授权问题漏洞
Vulnerability Description
Ping Identity Windows PingId是美国Ping Identity的一款可以为应用程序提供安全保障的软件。 PingID Windows Login 2.7 版本存在安全漏洞,该漏洞源于 RSA 配置错误容易受到预计算字典攻击,从而导致离线 MFA 绕过。
CVSS Information
N/A
Vulnerability Type
N/A