CVE-2024-23600
Severity CVSS v4.0:
Pending analysis
Type:
CWE-20
Input Validation
Publication date:
01/08/2024
Last modified:
15/04/2026
Description
Improper Input Validation of query search results for private field data in PingIDM (Query Filter module) allows for a potentially efficient brute forcing approach leading to information disclosure.
Impact
Base Score 3.x
2.70
Severity 3.x
LOW