Vulnerability Database

314,433

Total vulnerabilities in the database

CVE-2025-67505

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 11.0.0 through 20.0.0, race conditions may arise from concurrent requests using the ApiClient class. This could cause a status code or response header from one request’s response to influence another request’s response. This issue is fixed in version 20.0.1.

Published: Dec 10, 2025
Updated: Dec 17, 2025
CVE: CVE-2025-67505
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.4
AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L

CWEs:

CWE-362

Affected Software
References

No affected software listed.

https://github.com/okta/okta-sdk-java/commit/abf4f128a0441f90cb7efcdcf4bde1aef8703243
https://github.com/okta/okta-sdk-java/security/advisories/GHSA-j5gq-897m-2rff

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo