CVE-2025-66033

Name of the Vulnerable Software and Affected Versions Okta Java Management SDK versions 21.0.0 through 24.0.0

Description The Okta Java Management SDK, used for interacting with the Okta management API, has a potential issue in multithreaded implementations. Versions 21.0.0 through 24.0.0 may experience memory issues due to improper thread cleanup after requests. This can lead to performance degradation and availability issues in long-running applications, potentially resulting in a denial-of-service condition under sustained load. Applications utilizing the ApiClient in a multithreaded manner are particularly at risk.

Recommendations Update to version 24.0.1 or later.