National Cyber Warfare Foundation (NCWF) Forums


Okta fixes a flaw present since July 23, 2024, that let users log in under specific circumstances with any password if the account's username had
0 user ratings		2024-11-02 14:19:04
milo
Blue Team (CND)

Richard Lawler / The Verge:

Okta fixes a flaw present since July 23, 2024, that let users log in under specific circumstances with any password if the account's username had 52+ characters  —  The vulnerability is fixed now, but Okta said that for three months it could've been used to access accounts with usernames stretching at least 52 characters long.




Richard Lawler / The Verge:

Okta fixes a flaw present since July 23, 2024, that let users log in under specific circumstances with any password if the account's username had 52+ characters  —  The vulnerability is fixed now, but Okta said that for three months it could've been used to access accounts with usernames stretching at least 52 characters long.



Source: TechMeme
Source Link: http://www.techmeme.com/241101/p22#a241101p22

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.