Okta Verify
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Okta Verify.
By the Year
In 2026 there have been 0 vulnerabilities in Okta Verify. Verify did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 2 | 7.80 |
It may take a day or so for new Verify vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Okta Verify Security Vulnerabilities
Okta Verify Agent for Windows: Local Privilege Escalation via OktaDeviceAccessPipe
CVE-2024-9191
7.8 - High
- November 01, 2024
The Okta Device Access features, provided by the Okta Verify agent for Windows, provides access to the OktaDeviceAccessPipe, which enables attackers in a compromised device to retrieve passwords associated with Desktop MFA passwordless logins. The vulnerability was discovered via routine penetration testing. Note: A precondition of this vulnerability is that the user must be using the Okta Device Access passwordless feature. Okta Device Access users not using passwordless are not affected, and customers only using Okta Verify on platforms other than Windows, or only using FastPass are not affected.
Incorrect Default Permissions
Okta Verify Windows DLL Hijacking Priv Escalation - Fixed 5.0.2
CVE-2024-7061
7.8 - High
- August 07, 2024
Okta Verify for Windows is vulnerable to privilege escalation through DLL hijacking. The vulnerability is fixed in Okta Verify for Windows version 5.0.2. To remediate this vulnerability, upgrade to 5.0.2 or greater.
DLL preloading
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Okta Verify or by Okta? Click the Watch button to subscribe.
