CVE-2019-13496
04.11.2019, 17:15
One Identity Cloud Access Manager before 8.1.4 Hotfix 1 allows OTP bypass via vectors involving a man in the middle, the One Identity Defender product, and replacing a failed SAML response with a successful SAML response.Enginsight
Vendor | Product | Version |
---|---|---|
oneidentity | cloud_access_manager | 𝑥 < 8.1.4 |
oneidentity | cloud_access_manager | 8.1.4 |
𝑥
= Vulnerable software versions