Vulnerability in Ping Identity Pingfederate

CVE-2025-22854

Improper handling of non-200 http responses in the PingFederate Google Adapter leads to thread exhaustion under normal usage conditions.

EPSS: 0.003 (53.4th percentile) — read the EPSS interpretation.