CVE-2022-3145

Summary

An open redirect vulnerability exists in Okta OIDC Middleware prior to version 5.0.0 allowing an attacker to redirect a user to an arbitrary URL.

Affected Software

VendorProductVersion RangeStatus
OktaOkta OIDC Middlewareprior to 5.0.0affected

Weaknesses

  • Open Redirect

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References