CVE-2025-67505

CVSS v3.1

8.4

High

Vector

AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L

Name of the Vulnerable Software and Affected Versions Okta Java Management SDK versions 11.0.0 through 20.0.0

Description The Okta Java Management SDK, used for interacting with the Okta management API, is susceptible to race conditions when handling concurrent requests utilizing the ApiClient class. These race conditions can lead to a situation where the status code or response header from one request inadvertently affects another request’s response.

Recommendations Update to version 20.0.1 or later.

Exploit

Fix

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2025-67505

GHSA-J5GQ-897M-2RFF

Affected Products

Okta Java Management Sdk

CVE-2025-67505

Weakness Enumeration

Related Identifiers

Affected Products

References · 10