Vulnerabilities > Forgerock > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-29 CVE-2023-1656 Cleartext Transmission of Sensitive Information vulnerability in Forgerock Ldap Connector
Cleartext Transmission of Sensitive Information vulnerability in ForgeRock Inc.
network
low complexity
forgerock CWE-319
7.5
2022-02-14 CVE-2021-4201 Improper Authentication vulnerability in Forgerock Access Management
Missing access control in ForgeRock Access Management 7.1.0 and earlier versions on all platforms allows remote unauthenticated attackers to hijack sessions, including potentially admin-level sessions.
network
low complexity
forgerock CWE-287
7.5
2021-08-25 CVE-2021-37153 Unspecified vulnerability in Forgerock Access Management
ForgeRock Access Management (AM) before 7.0.2, when configured with Active Directory as the Identity Store, has an authentication-bypass issue.
network
low complexity
forgerock
7.5