CVE-2024-0980

HIGH

Okta Verify for Windows - RCE

Title source: llm

Description

The Auto-update service for Okta Verify for Windows is vulnerable to two flaws which in combination could be used to execute arbitrary code.

References (1)

Scores

CVSS v3 7.1
EPSS 0.0008
EPSS Percentile 22.4%
Attack Vector ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-22 CWE-427
Status draft

Timeline

Published Mar 28, 2024
Tracked Since Feb 18, 2026