forgerock — Vulnerabilities & Security Advisories 7

Browse all 7 CVE security advisories affecting forgerock. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ForgeRock provides identity and access management solutions, serving as a core authentication platform for enterprises. Historically, its products have faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with seven CVEs currently recorded. The platform's security characteristics include its widespread use in critical infrastructure, making any vulnerabilities particularly impactful. While no major public security incidents have been widely documented, the consistent discovery of CVEs suggests ongoing challenges in maintaining secure implementations across its complex authentication and authorization frameworks.

Top products by forgerock: Access Management LDAP Connector Access Management Web Policy Agent Access Management Java Policy Agent

CVEs 7

CVE ID	Title	CVSS	Severity	Published
CVE-2023-0511	AM Java Policy Agent path traversal — Access Management Java Policy AgentCWE-23	9.1	Critical	2023-02-28

This page lists every published CVE security advisory associated with forgerock. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

forgerock — Vulnerabilities & Security Advisories 7