Okta security advisories

Subscribe to RSS Feed

View latest advisories

Legal Disclaimer

Okta AD/LDAP Delegated Authentication - Username Above 52 Characters Security Advisory
Okta Verify Desktop MFA for Windows Passwordless Login CVE-2024-9191
Okta Verify for iOS ContextExtension CVE-2024-10327
Okta Classic Application Sign-On Policy Bypass
Okta Verify for Windows Privilege Escalation CVE-2024-7061
Okta Browser Plugin Reflected Cross-Site Scripting CVE-2024-0981
Okta Verify for Windows Auto-update Arbitrary Code Execution CVE-2024-0980
Okta LDAP Agent CVE-2023-0392
Okta Advanced Server Access Client CVE-2023-0093
Okta Access Gateway Advisory for CVE-2022-3602 and CVE-2022-3786
Okta Active Directory Agent CVE-2022-1697
Okta Advanced Server Access Client CVE-2022-1030
Okta Advanced Server Access Client CVE-2022-24295
Okta RADIUS Server Agent CVE-2021-45105
Okta On-Prem MFA Agent CVE-2021-45046
Okta RADIUS Server Agent CVE-2021-45046
Okta On-Prem MFA Agent CVE-2021-44228
Okta RADIUS Server Agent CVE-2021-44228
Okta On-Prem MFA Agent CVE-2021-45105
Okta Access Gateway CVE-2021-28113

Reporting and resources

Report a Vulnerability

Report a security vulnerability in Okta products or services

Learn more

Set a Primary Security Contact

The Primary Security Contact may be used to alert your security and privacy team if Okta identifies a specific threat to your organization requiring notification.

Learn more

Okta Bug Bounty

Learn more about scope and rewards

Learn more

Okta Security Blog

Latest security articles and news

Learn more