CVE-2024-25573 Information
Jun 16, 2025
cve
Description
Unsanitized user-supplied data saved in the PingFederate Administrative Console could trigger the execution of JavaScript code in subsequent user processing.
Reference
https://docs.pingidentity.com/pingfederate/12.1/release_notes/pf_release_notes.html https://www.pingidentity.com/en/resources/downloads/pingfederate.html
Related CNNVD
CNNVD-202506-1838 (Published: 2025-06-15)
Share on: