Vulnerabilities > Okta > Advanced Server Access

DATE CVE VULNERABILITY TITLE RISK
2023-03-06 CVE-2023-0093 Command Injection vulnerability in Okta Advanced Server Access
Okta Advanced Server Access Client versions 1.13.1 through 1.65.0 are vulnerable to command injection due to the third party library webbrowser.
network
low complexity
okta CWE-77
8.8
8.8
2022-03-23 CVE-2022-1030 OS Command Injection vulnerability in Okta Advanced Server Access
Okta Advanced Server Access Client for Linux and macOS prior to version 1.58.0 was found to be vulnerable to command injection via a specially crafted URL.
network
low complexity
okta CWE-78
8.8
8.8