📦 Access Management

Name: Access Management
Author: Forgerock

by Forgerock

🔍 What is Access Management?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2022-3748

CRITICAL CVSS 9.8 Apr 14, 2023

CVE-2022-3748 is an authentication bypass vulnerability in ForgeRock Access Management that allows attackers to gain unauthorized access without valid credentials. This affects ForgeRock Access Manage...

CVE-2021-37153

CRITICAL CVSS 9.8 Aug 25, 2021

This vulnerability allows attackers to bypass authentication in ForgeRock Access Management when configured with Active Directory as the Identity Store. It affects all versions before 7.0.2, potential...

CVE-2021-35464

CRITICAL CVSS 9.8 Jul 22, 2021

CVE-2021-35464 is an unauthenticated remote code execution vulnerability in ForgeRock AM servers due to insecure Java deserialization in the jato.pageSession parameter. Attackers can exploit this by s...

CVE-2024-25566

MEDIUM CVSS 6.1 Oct 29, 2024

CVE-2024-25566 is an open-redirect vulnerability in PingAM where attackers can craft requests that bypass URL validation. This allows redirecting users to malicious websites, facilitating phishing att...