Vulnerabilities > Pingidentity > Pingcentral > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-09-30 CVE-2022-23726 Incorrect Permission Assignment for Critical Resource vulnerability in Pingidentity Pingcentral
PingCentral versions prior to listed versions expose Spring Boot actuator endpoints that with administrative authentication return large amounts of sensitive environmental and application information.
network
low complexity
pingidentity CWE-732
4.9