Markets
News
Analysis
User
24/7
Economic Calendar
Education
Data
- Names
- Latest
- Prev
[Okta Fixes Serious Security Vulnerability: Usernames Longer Than 52 Characters Can Bypass Login Verification] SlowMist Chief Information Security Officer 23pds Wrote That Okta Allows Any Username Longer Than 52 Characters To Bypass Login! According To An Announcement From Okta, An Identity And Access Management Software Provider, On October 30, A Vulnerability Was Discovered Internally When Generating Cache Keys For AD/LDAP DelAuth. The Bcrypt Algorithm Is Used To Generate Cache Keys, In Which We Hash The Combined String Of UserId + Username + Password. Under Certain Conditions, This Can Allow A User To Authenticate Simply By Providing A Stored Cache Key Of A Previously Successfully Authenticated Username. The Premise Of This Vulnerability Is That Each Time A Cache Key Is Generated For A User, The Username Must Be Equal To Or Longer Than 52 Characters. The Affected Products And Versions Are Okta AD/LDAP DelAuth As Of July 23, 2024, And The Vulnerability Was Resolved In Okta's Production Environment On October 30, 2024
Quick access to 24/7
Quick access to more editor-selected real-time news
Exclusive video for free
FastBull VIPject team is dedicated to create exclusive videos
Follow More Symbols
You can add more symbols to your watchlist.
More comprehensive macro data and economic indicators
More comprehensive historical data on indicators to help analyze macro markets
Member-only Database
Comprehensive forex, commodity, and equity market data