CVE-2022-23721 Information

Description

PingID integration for Windows login prior to 2.9 does not handle duplicate usernames which can lead to a username collision when two people with the same username are provisioned onto the same machine at different times.

Reference

https://docs.pingidentity.com/r/en-us/pingid/davinci_pingid_windows_login_relnotes_2.9