Known Vulnerabilities for Openam by Forgerock
Listed below are 6 of the newest known vulnerabilities associated with "Openam" by "Forgerock".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-33439 json | Open Access Management (OpenAM) is an access management solution. Prior to 16.0.6, OpenIdentityPlatform OpenAM is vulnerable ... | Not Provided | 2026-04-07 | 2026-04-08 |
| CVE-2021-35464 json | ForgeRock AM server before 7.0 has a Java deserialization vulnerability in the jato.pageSession parameter on multiple pages. ... | 9.8 - CRITICAL | 2021-07-22 | 2021-08-02 |
| CVE-2021-29156 json | ForgeRock OpenAM before 13.5.1 allows LDAP injection via the Webfinger protocol. For example, an unauthenticated attacker can... | 7.5 - HIGH | 2021-03-25 | 2021-03-29 |
| CVE-2017-14395 json | Auth 2.0 Authorization Server of ForgeRock Access Management (OpenAM) 13.5.0-13.5.1 and Access Management (AM) 5.0.0-5.1.1 do... | 6.1 - MEDIUM | 2019-06-19 | 2019-06-21 |
| CVE-2017-14394 json | OAuth 2.0 Authorization Server of ForgeRock Access Management (OpenAM) 13.5.0-13.5.1 and Access Management (AM) 5.0.0-5.1.1 d... | 6.1 - MEDIUM | 2019-06-19 | 2019-06-21 |
| CVE-2016-10097 json | XML External Entity (XXE) Vulnerability in /SSOPOST/metaAlias/%realm%/idpv2 in OpenAM - Access Management 10.1.0 allows remot... | 7.5 - HIGH | 2017-01-02 | 2017-01-11 |
| CVE-2014-7246 json | The Core Server in OpenAM 9.5.3 through 9.5.5, 10.0.0 through 10.0.2, 10.1.0-Xpress, and 11.0.0 through 11.0.2, when deployed... | 3.5 - LOW | 2014-11-14 | 2015-02-10 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Forgerock | Openam | 9.5.5 | |||
| Application | Forgerock | Openam | 9.5.4 | |||
| Application | Forgerock | Openam | 9.5.3 | |||
| Application | Forgerock | Openam | 13.5.1 | |||
| Application | Forgerock | Openam | 13.5.0 | |||
| Application | Forgerock | Openam | 11.0.2 | |||
| Application | Forgerock | Openam | 11.0.1 | |||
| Application | Forgerock | Openam | 11.0.0 | |||
| Application | Forgerock | Openam | 10.1.0 | |||
| Application | Forgerock | Openam | 10.0.2 | |||
| Application | Forgerock | Openam | 10.0.1 | |||
| Application | Forgerock | Openam | 10.0.0 |