CVE-2025-22854 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	UNKNOWN				---
Ping Identity	CNA	---				---
CISA-ADP	ADP	---				---

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: Unknown

Common Weakness Enumeration

CWE-394 - Unexpected Status Code or Return Value
The software does not properly check when a function or operation returns a value that is legitimate for the function, but is not expected by the software.

References

https://docs.pingidentity.com/integrations/google/google_login_integration_kit/pf_google_cic_changelog.html

https://www.pingidentity.com/en/resources/downloads/pingfederate.html