{"containers": {"cna": {"affected": [{"platforms": ["Windows"], "product": "PingID Windows Login", "vendor": "Ping Identity", "versions": [{"lessThan": "2.8", "status": "affected", "version": "unspecified", "versionType": "custom"}]}], "credits": [{"lang": "en", "value": "Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability."}], "descriptions": [{"lang": "en", "value": "PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests. An attacker with the ability to execute code on the target machine maybe able to exploit and spoof the local Java service using multiple attack vectors. A successful attack can lead to code executed as SYSTEM by the PingID Windows Login application, or even a denial of service for offline security key authentication."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}], "problemTypes": [{"descriptions": [{"cweId": "CWE-310", "description": "CWE-310 Cryptographic Issues", "lang": "en", "type": "CWE"}]}, {"descriptions": [{"cweId": "CWE-288", "description": "CWE-288 Authentication Bypass Using an Alternate Path or Channel", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2022-06-30T19:25:35.000Z", "orgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e", "shortName": "Ping Identity"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.pingidentity.com/en/resources/downloads/pingid.html"}, {"tags": ["x_refsource_MISC"], "url": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html"}], "source": {"advisory": "SECADV031", "discovery": "EXTERNAL"}, "title": "PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests", "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "responsible-disclosure@pingidentity.com", "ID": "CVE-2022-23719", "STATE": "PUBLIC", "TITLE": "PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "PingID Windows Login", "version": {"version_data": [{"platform": "Windows", "version_affected": "<", "version_value": "2.8"}]}}]}, "vendor_name": "Ping Identity"}]}}, "credit": [{"lang": "eng", "value": "Ping Identity credits The Commonwealth Bank of Australia for the discovery of this vulnerability."}], "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests. An attacker with the ability to execute code on the target machine maybe able to exploit and spoof the local Java service using multiple attack vectors. A successful attack can lead to code executed as SYSTEM by the PingID Windows Login application, or even a denial of service for offline security key authentication."}]}, "impact": {"cvss": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-310 Cryptographic Issues"}]}, {"description": [{"lang": "eng", "value": "CWE-288 Authentication Bypass Using an Alternate Path or Channel"}]}]}, "references": {"reference_data": [{"name": "https://www.pingidentity.com/en/resources/downloads/pingid.html", "refsource": "MISC", "url": "https://www.pingidentity.com/en/resources/downloads/pingid.html"}, {"name": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html", "refsource": "MISC", "url": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html"}]}, "source": {"advisory": "SECADV031", "discovery": "EXTERNAL"}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T03:51:46.025Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.pingidentity.com/en/resources/downloads/pingid.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html"}]}]}, "cveMetadata": {"assignerOrgId": "5998a2e9-ae88-42cd-b6e0-7564fd979f9e", "assignerShortName": "Ping Identity", "cveId": "CVE-2022-23719", "datePublished": "2022-06-30T19:25:35.000Z", "dateReserved": "2022-01-19T00:00:00.000Z", "dateUpdated": "2024-08-03T03:51:46.025Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pingidentity:pingid_integration_for_windows_login:*:*:*:*:*:*:*:*", "matchCriteriaId": "D631B535-D41D-4179-8E1B-CCAC61DC5236", "versionEndExcluding": "2.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "PingID Windows Login prior to 2.8 does not authenticate communication with a local Java service used to capture security key requests. An attacker with the ability to execute code on the target machine maybe able to exploit and spoof the local Java service using multiple attack vectors. A successful attack can lead to code executed as SYSTEM by the PingID Windows Login application, or even a denial of service for offline security key authentication."}, {"lang": "es", "value": "PingID Windows Login versiones anteriores a 2.8, no autentica la comunicaci\u00f3n con un servicio local de Java usado para capturar peticiones de claves de seguridad. Un atacante con la capacidad de ejecutar c\u00f3digo en la m\u00e1quina objetivo puede ser capaz de explotar y falsificar el servicio local de Java usando m\u00faltiples vectores de ataque. Un ataque con \u00e9xito puede conllevar a una ejecuci\u00f3n de c\u00f3digo como SYSTEM por parte de la aplicaci\u00f3n PingID Windows Login, o incluso una denegaci\u00f3n de servicio para la autenticaci\u00f3n de la clave de seguridad fuera de l\u00ednea"}], "id": "CVE-2022-23719", "lastModified": "2024-11-21T06:49:10.510", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.6, "impactScore": 6.0, "source": "responsible-disclosure@pingidentity.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 0.5, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-06-30T20:15:08.310", "references": [{"source": "responsible-disclosure@pingidentity.com", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html"}, {"source": "responsible-disclosure@pingidentity.com", "tags": ["Product", "Vendor Advisory"], "url": "https://www.pingidentity.com/en/resources/downloads/pingid.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Release Notes", "Vendor Advisory"], "url": "https://docs.pingidentity.com/bundle/pingid/page/zhy1653552428545.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Product", "Vendor Advisory"], "url": "https://www.pingidentity.com/en/resources/downloads/pingid.html"}], "sourceIdentifier": "responsible-disclosure@pingidentity.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-288"}, {"lang": "en", "value": "CWE-310"}], "source": "responsible-disclosure@pingidentity.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-306"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}