Browse all 15 CVE security advisories affecting okta. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Okta provides identity and access management solutions as a core business, enabling secure authentication and authorization for enterprises. Historically, the platform has been susceptible to various vulnerability classes including cross-site scripting (XSS), remote code execution (RCE), and privilege escalation flaws. While the company maintains a security-first approach, it has faced notable incidents, including a 2022 breach where attackers compromised a customer support engineer's account, leading to unauthorized access to some customer data. Despite these challenges, Okta remains a widely adopted solution in the identity management space, with ongoing efforts to address security concerns and maintain its position as a critical component of organizational security infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-9191 | Okta Verify 安全漏洞 — Okta Verify for WindowsCWE-276 | 7.1 | High | 2024-11-01 |
| CVE-2024-7061 | Okta Verify 安全漏洞 — Okta Verify for WindowsCWE-22 | 5.5 | Medium | 2024-08-07 |
| CVE-2024-0980 | Okta Verify 安全漏洞 — Okta Verify for WindowsCWE-22 | 8.8AI | HighAI | 2024-03-27 |
This page lists every published CVE security advisory associated with okta. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.