cvedb.io
CVE-2022-1030
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2022-03-23T20:15:10.757 · Last modified 2026-06-17T04:21:40.387

Summary

Okta Advanced Server Access Client for Linux and macOS prior to version 1.58.0 was found to be vulnerable to command injection via a specially crafted URL. An attacker, who has knowledge of a valid team name for the victim and also knows a valid target host where the user has access, can execute commands on the local system.

Affected products

okta — advanced_server_access

Does this affect you?

Add your gear to cvedb and we'll alert you only when okta ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.