CVE-2025-67505
Description
Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one requests response to influence another requests response. This issue is fixed in version 20.0.1.
Risk Information
Base Score
8.4
MODERATE
Vector
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
EPSS Score
Exploitation Probability
0.05
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2025-67505 are fixed in Okta - okta-sdk-root 20.0.1 | Windows |
| Vulnerabilities CVE-2025-67505 are fixed in Okta - okta-sdk-root for Linux 20.0.1 | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234