All 5 CVE vulnerabilities found in access management, with AI-generated Chinese analysis, references, and POCs.
Vendor: ForgeRock
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2023-0582 | Path Traversal in ForgeRock Access Managment CWE-22 | 8.1 | High | 2024-03-27 |
| CVE-2022-3748 | Improper authorization that can lead to account impersonation CWE-285 | 9.8 | Critical | 2023-04-14 |
| CVE-2022-24669 | Anonymous users can register / de-register for configuration change notifications CWE-862 | 6.5 | Medium | 2022-10-27 |
| CVE-2022-24670 | Any user can run unrestricted LDAP queries against a configuration endpoint CWE-200 | 7.1 | High | 2022-10-27 |
| CVE-2021-4201 | Pre-authentication session hijacking CWE-284 | 9.6 | Critical | 2022-02-14 |
All 5 known CVE vulnerabilities affecting access management with full Chinese analysis, references, and POCs where available.