Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2024-23983

Disclosure Date: November 11, 2024 (last updated November 12, 2024)
Improper handling of canonical URL-encoding may lead to bypass not properly constrained by request rules.
0
0
Attacker Value
Unknown

CVE-2024-23316

Disclosure Date: May 31, 2024 (last updated June 01, 2024)
HTTP request desynchronization in Ping Identity PingAccess, all versions prior to 8.0.1 affected allows an attacker to send specially crafted http header requests to create a request smuggling condition for proxied requests.
0
0
Attacker Value
Unknown

CVE-2021-31923

Disclosure Date: September 24, 2021 (last updated February 23, 2025)
Ping Identity PingAccess before 5.3.3 allows HTTP request smuggling via header manipulation.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0