CINXE.COM

<!DOCTYPE html><html lang="en"><head><meta charSet="utf-8"/><meta http-equiv="x-ua-compatible" content="ie=edge,chrome=1"/><meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"/><style data-href="/styles.46f76fdc47e9ef802085.css" data-identity="gatsby-global-css">@font-face{font-display:swap;font-family:ABCWhyte Book;src:url(/static/ABCWhyte-Book-c54ef58a2b5ff88bc6f98e3741d5ef6c.woff2) format("woff2"),url(/static/ABCWhyte-Book-4ac88a2a0bf65dcf4e97b384945fad79.woff) format("woff")}@font-face{font-display:swap;font-family:ABCWhyte Medium;src:url(/static/ABCWhyte-Medium-46e27965624574b76d1008026fe135cf.woff2) format("woff2"),url(/static/ABCWhyte-Medium-ce1878b2dcf15e8eedd796cd0681fd29.woff) format("woff")}@-webkit-keyframes wave{0%{opacity:0;-webkit-transform:translate3d(0,50px,0);transform:translate3d(0,50px,0)}to{opacity:1;-webkit-transform:translateZ(0);transform:translateZ(0)}}@keyframes wave{0%{opacity:0;-webkit-transform:translate3d(0,50px,0);transform:translate3d(0,50px,0)}to{opacity:1;-webkit-transform:translateZ(0);transform:translateZ(0)}}</style><meta name="generator" content="Gatsby 3.14.0"/><style>.gatsby-image-wrapper{position:relative;overflow:hidden}.gatsby-image-wrapper picture.object-fit-polyfill{position:static!important}.gatsby-image-wrapper img{bottom:0;height:100%;left:0;margin:0;max-width:none;padding:0;position:absolute;right:0;top:0;width:100%;object-fit:cover}.gatsby-image-wrapper [data-main-image]{opacity:0;transform:translateZ(0);transition:opacity .25s linear;will-change:opacity}.gatsby-image-wrapper-constrained{display:inline-block;vertical-align:top}</style><noscript><style>.gatsby-image-wrapper noscript [data-main-image]{opacity:1!important}.gatsby-image-wrapper [data-placeholder-image]{opacity:0!important}</style></noscript><script type="module">const e="undefined"!=typeof HTMLImageElement&&"loading"in HTMLImageElement.prototype;e&&document.body.addEventListener("load",(function(e){if(void 0===e.target.dataset.mainImage)return;if(void 0===e.target.dataset.gatsbyImageSsr)return;const t=e.target;let a=null,n=t;for(;null===a&&n;)void 0!==n.parentNode.dataset.gatsbyImageWrapper&&(a=n.parentNode),n=n.parentNode;const o=a.querySelector("[data-placeholder-image]"),r=new Image;r.src=t.currentSrc,r.decode().catch((()=>{})).then((()=>{t.style.opacity=1,o&&(o.style.opacity=0,o.style.transition="opacity 500ms linear")}))}),!0);</script><script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= 'https://www.googletagmanager.com/gtm.js?id='+i+dl+'';f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer', 'GTM-KXMLV58');</script><link rel="icon" href="/favicon-32x32.png?v=f154a91a85cc0667d644e6c37def0af9" type="image/png"/><link rel="manifest" href="/manifest.webmanifest" crossorigin="anonymous"/><meta name="theme-color" content="#fff"/><link rel="apple-touch-icon" sizes="48x48" href="/icons/icon-48x48.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="72x72" href="/icons/icon-72x72.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="96x96" href="/icons/icon-96x96.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="144x144" href="/icons/icon-144x144.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="192x192" href="/icons/icon-192x192.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="256x256" href="/icons/icon-256x256.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="384x384" href="/icons/icon-384x384.png?v=f154a91a85cc0667d644e6c37def0af9"/><link rel="apple-touch-icon" sizes="512x512" href="/icons/icon-512x512.png?v=f154a91a85cc0667d644e6c37def0af9"/><title data-react-helmet="true">Okta Browser Plugin Reflected Cross-Site Scripting CVE-2024-0981</title><script data-react-helmet="true" type="application/ld+json">{"@context":"http://schema.org","@type":"WebPage","url":"https://www.okta.comundefined","inLanguage":"en","mainEntityOfPage":"https://www.okta.comundefined","author":{"@type":"Organization","name":"Okta, Inc."},"copyrightHolder":{"@type":"Organization","name":"Okta, Inc."},"copyrightYear":"2021","creator":{"@type":"Organization","name":"Okta, Inc."},"publisher":{"@type":"Organization","name":"Okta, Inc."},"datePublished":"4/26/21","dateModified":"4/26/21","image":{"@type":"ImageObject","url":"[object Module]"}}</script><script data-react-helmet="true" type="application/ld+json">{"@context":"http://schema.org","@type":"Event","name":"Forum21 Europe","startDate":"Jun 23 2021","endDate":"Jun 23 2021","location":[{"@type":"VirtualLocation","url":"https://www.okta.comundefined"}],"organizer":{"@context":"http://schema.org","@type":"Organization","legalName":"Okta, Inc.","name":"Okta, Inc.","url":"https://www.okta.comundefined","contactPoint":[{"@type":"ContactPoint","telephone":"+1 (888) 722-7871","contactType":"Customer Service"},{"@type":"ContactPoint","telephone":"+1 (800) 588-1656","contactType":"Sales USA"}],"logo":"https://www.okta.com/themes/custom/okta_www_theme/images/logo.svg","sameAs":["https://twitter.com/okta","https://www.facebook.com/Okta/","https://www.linkedin.com/company/okta-inc-/","https://www.youtube.com/user/OktaInc"]},"performer":[{"@context":"http://schema.org","@type":"Organization","legalName":"Okta, Inc.","name":"Okta, Inc.","url":"https://www.okta.comundefined","contactPoint":[{"@type":"ContactPoint","telephone":"+1 (888) 722-7871","contactType":"Customer Service"},{"@type":"ContactPoint","telephone":"+1 (800) 588-1656","contactType":"Sales USA"}],"logo":"https://www.okta.com/themes/custom/okta_www_theme/images/logo.svg","sameAs":["https://twitter.com/okta","https://www.facebook.com/Okta/","https://www.linkedin.com/company/okta-inc-/","https://www.youtube.com/user/OktaInc"]},{"@type":"Person","name":"Philipp Diekh枚ner"},{"@type":"Person","name":"David McClelland"},{"@type":"Person","name":"Duncan Brown"},{"@type":"Person","name":"Derek Gordon"},{"@type":"Person","name":"Angela Salmeron"},{"@type":"Person","name":"Rob Hale"},{"@type":"Person","name":"Liz Cocker"},{"@type":"Person","name":"Yves Couturier"},{"@type":"Person","name":"Reem Zahran"},{"@type":"Person","name":"Todd McKinnon"},{"@type":"Person","name":"Jesper Frederiksen"},{"@type":"Person","name":"Ben King"},{"@type":"Person","name":"Ian Lowe"},{"@type":"Person","name":"Jiong Liu"}],"image":"https://www.okta.com/sites/default/files/media/image/2021-04/Forum21_Europe.png?v=1","url":"https://www.okta.comundefined","eventAttendanceMode":"https://schema.org/OnlineEventAttendanceMode"}</script><script data-react-helmet="true" type="application/ld+json">{"@context":"http://schema.org","@type":"Organization","legalName":"Okta, Inc.","name":"Okta, Inc.","url":"https://www.okta.comundefined","contactPoint":[{"@type":"ContactPoint","telephone":"+1 (888) 722-7871","contactType":"Customer Service"},{"@type":"ContactPoint","telephone":"+1 (800) 588-1656","contactType":"Sales USA"}],"logo":"https://www.okta.com/themes/custom/okta_www_theme/images/logo.svg","sameAs":["https://twitter.com/okta","https://www.facebook.com/Okta/","https://www.linkedin.com/company/okta-inc-/","https://www.youtube.com/user/OktaInc"]}</script><link rel="sitemap" type="application/xml" href="/sitemap.xml"/><link rel="alternate" type="application/rss+xml" title="Okta Trust" href="/security-advisories.xml"/><link as="script" rel="preload" href="/webpack-runtime-366dd9202e650ca1d224.js"/><link as="script" rel="preload" href="/framework-89031d015d5410b07fe1.js"/><link as="script" rel="preload" href="/34321f76-ff1460702b8c0729641b.js"/><link as="script" rel="preload" href="/app-8708b3310e611b4a31c2.js"/><link as="script" rel="preload" href="/component---src-templates-security-advisories-js-18487b466f28d0df9347.js"/><link as="fetch" rel="preload" href="/page-data/security-advisories/okta-browser-plugin-reflected-cross-site-scripting-cve-2024-0981/page-data.json" crossorigin="anonymous"/><link as="fetch" rel="preload" href="/page-data/sq/d/2744905544.json" crossorigin="anonymous"/><link as="fetch" rel="preload" href="/page-data/app-data.json" crossorigin="anonymous"/><script src="https://www.google.com/recaptcha/api.js" async="" defer=""></script><link rel="preconnect" href="//munchkin.marketo.net"/><link rel="dns-prefetch" href="//munchkin.marketo.net"/></head><body><noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-KXMLV58" height="0" width="0" style="display: none; visibility: hidden" aria-hidden="true"></iframe></noscript><script>(function() { try { var mode = localStorage.getItem('theme-ui-color-mode'); if (!mode) return document.documentElement.classList.add('theme-ui-' + mode); } catch (e) {} })();</script><noscript id="gatsby-noscript">This site works best with JavaScript enabled.</noscript><div id="___gatsby"><style data-emotion="css-global 190k16i">html{--theme-ui-colors-background:#FFF;--theme-ui-colors-black:#000;--theme-ui-colors-white:#FFF;--theme-ui-colors-primary:#00297A;--theme-ui-colors-primaryLight:#1662DD;--theme-ui-colors-secondary:#EBEBED;--theme-ui-colors-secondaryLight:#EBEBED;--theme-ui-colors-tertiary:#4cbf9d;--theme-ui-colors-tertiaryLight:#4cbf9d;--theme-ui-colors-tertiaryMedium:#4cbf9d;--theme-ui-colors-inputFocus:#92BCFF;--theme-ui-colors-inputError:#DA372C;--theme-ui-colors-buttonPrimaryColor:#00297A;--theme-ui-colors-linkPrimaryColor:#00297A;--theme-ui-colors-linkPrimaryHoverColor:#1662DD;--theme-ui-colors-linkSecondaryColor:#FFF;--theme-ui-colors-linkSecondaryHoverColor:#92BCFF;--theme-ui-colors-speakerGroupTitleColor:#4cbf9d;--theme-ui-colors-speakerBorderHoverColor:#4cbf9d;--theme-ui-colors-gray000:#F5F5F6;--theme-ui-colors-gray100:#EBEBED;--theme-ui-colors-gray200:#D7D7DC;--theme-ui-colors-gray300:#C1C1C8;--theme-ui-colors-gray400:#AAAAB4;--theme-ui-colors-gray500:#8C8C96;--theme-ui-colors-gray600:#6E6E78;--theme-ui-colors-gray700:#585862;--theme-ui-colors-gray800:#41414B;--theme-ui-colors-gray900:#212126;--theme-ui-colors-turquois100:#ABD5D6;color:var(--theme-ui-colors-text);background-color:var(--theme-ui-colors-background);}</style><style data-emotion="css-global j0hkkh">*{box-sizing:border-box;}html{background-color:var(--theme-ui-colors-white);color:var(--theme-ui-colors-primary);font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;width:100%;overflow-x:hidden;}html html{line-height:1.15;webkit-text-size-adjust:100%;}html body{margin:0;}html main{display:block;}html h1{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:3rem;font-weight:normal;line-height:110%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h1{font-size:3rem;}}@media screen and (min-width: 1200px){html h1{font-size:4rem;}}html h1,html h2,html h3,html h4,html h5,html h6,html p{margin:0;}html hr{box-sizing:content-box;height:0;overflow:visible;}html pre{font-family:monospace,monospace;font-size:1em;}html a{color:var(--theme-ui-colors-primary);}html abbr[title]{border-bottom:none;-webkit-text-decoration:underline dotted;text-decoration:underline dotted;}html b,html strong{font-weight:bolder;}html code,html kbd,html samp{font-family:monospace,monospace;font-size:1em;}html small{font-size:80%;}html sub,html sup{font-size:75%;line-height:0;position:relative;vertical-align:baseline;}html sub{bottom:-0.25em;}html sup{top:-0.5em;}html img{display:block;margin:auto;max-width:100%;}html button,html input,html optgroup,html select,html textarea{font-family:inherit;font-size:100%;line-height:1.15;margin:0;}html button,html input{overflow:visible;}html button,html select{text-transform:none;}html button,html [type="button"],html [type="reset"],html [type="submit"]{-webkit-appearance:button;}html button::-moz-focus-inner,html [type="button"]::-moz-focus-inner,html [type="reset"]::-moz-focus-inner,html [type="submit"]::-moz-focus-inner{border-style:none;padding:0;}html button:-moz-focusring,html [type="button"]:-moz-focusring,html [type="reset"]:-moz-focusring,html [type="submit"]:-moz-focusring{outline:1px dotted ButtonText;}html fieldset{padding:0.35em 0.75em 0.625em;}html legend{box-sizing:border-box;color:inherit;display:table;max-width:100%;padding:0;white-space:normal;}html progress{vertical-align:baseline;}html textarea{overflow:auto;}html [type="checkbox"],html [type="radio"]{box-sizing:border-box;padding:0;}html [type="number"]::-webkit-inner-spin-button,html [type="number"]::-webkit-outer-spin-button{height:auto;}html [type="search"]{-webkit-appearance:textfield;outline-offset:-2px;}html [type="search"]::-webkit-search-decoration{-webkit-appearance:none;}html::-webkit-file-upload-button{-webkit-appearance:button;font:inherit;}html details{display:block;}html summary{display:-webkit-box;display:-webkit-list-item;display:-ms-list-itembox;display:list-item;}html template{display:none;}html [hidden]{display:none;}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){html{color:#00297A;background-color:#FFF;}}html h2{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:2rem;font-weight:normal;line-height:120%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h2{font-size:2.5rem;}}@media screen and (min-width: 1200px){html h2{font-size:3rem;}}html h3{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1.75rem;font-weight:normal;line-height:125%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h3{font-size:1.85rem;}}@media screen and (min-width: 1200px){html h3{font-size:2rem;}}html h4{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1.3rem;font-weight:normal;line-height:135%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h4{font-size:1.35rem;}}@media screen and (min-width: 1200px){html h4{font-size:1.5rem;}}html h5{font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1.15rem;font-weight:normal;line-height:130%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h5{font-size:1.2rem;}}@media screen and (min-width: 1200px){html h5{font-size:1.25rem;}}html h6{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1.025rem;font-weight:normal;line-height:140%;color:var(--theme-ui-colors-primary);}@media screen and (min-width: 1024px){html h6{font-size:1.05rem;}}@media screen and (min-width: 1200px){html h6{font-size:1.15rem;}}html p{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-primary);}html p+p{margin-top:1rem;}html p a{color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;border-bottom:1.25px solid;border-bottom-color:var(--theme-ui-colors-primary);}html p a+.CustomLink{margin-left:1rem;}html p a:hover{color:var(--theme-ui-colors-linkPrimaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){html p a{color:#00297A;}html p a:hover{color:#1662dd;}}html strong{font-weight:normal;}html label{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-primary);}html li{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:inherit;}body{margin:0;}</style><div style="outline:none" tabindex="-1" id="gatsby-focus-wrapper"><style data-emotion="css l5xv05">.css-l5xv05{position:relative;}</style><div class="css-l5xv05"><style data-emotion="css 16f4xzv">.css-16f4xzv{background-color:var(--theme-ui-colors-white);position:fixed;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;height:auto;top:0;right:0;left:0;z-index:999;box-shadow:rgb(0 0 0 / 10%) 0 0 35px;}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f4xzv{background-color:#FFF;}}.css-16f4xzv.no-interaction{pointer-events:none;-webkit-user-select:none;-moz-user-select:none;-ms-user-select:none;user-select:none;}</style><header class="css-16f4xzv"><style data-emotion="css o8v3tf">.css-o8v3tf{width:100%;max-width:100%;margin-left:auto;margin-right:auto;padding-left:1rem;padding-right:1rem;}@media screen and (min-width: 1024px){.css-o8v3tf{max-width:1280px;padding-left:2rem;padding-right:2rem;}}@media screen and (min-width: 1400px){.css-o8v3tf{padding-left:0;padding-right:0;}}.css-o8v3tf .Container{padding:0;}</style><div class="css-o8v3tf"><style data-emotion="css 12kzl0h">.css-12kzl0h{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-pack:justify;-webkit-justify-content:space-between;justify-content:space-between;padding-top:10px;padding-bottom:10px;-webkit-box-flex-wrap:wrap;-webkit-flex-wrap:wrap;-ms-flex-wrap:wrap;flex-wrap:wrap;}@media screen and (min-width: 1024px){.css-12kzl0h{padding-top:1.7rem;padding-bottom:1.7rem;}}</style><div class="css-12kzl0h"><style data-emotion="css 147idhk">.css-147idhk{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:justify;-webkit-justify-content:space-between;justify-content:space-between;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;min-width:120px;width:100%;margin-right:auto;}@media screen and (min-width: 1024px){.css-147idhk{-webkit-box-pack:center;-ms-flex-pack:center;-webkit-justify-content:center;justify-content:center;width:auto;margin-right:1.5rem;}}@media screen and (min-width: 1400px){.css-147idhk{margin-right:4rem;}}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-147idhk{-webkit-flex:0 1 auto;-ms-flex:0 1 auto;flex:0 1 auto;}}</style><div class="css-147idhk"><style data-emotion="css 12kclyt">.css-12kclyt{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-flex:1 0 auto;-ms-flex:1 0 auto;flex:1 0 auto;margin-top:0;margin-bottom:0;margin-left:0;margin-right:0;font-size:12px;}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-12kclyt{max-height:60px;}}</style><div class="logo-wrapper css-12kclyt"><style data-emotion="css 1cpqlp5">.css-1cpqlp5{-webkit-flex:1 1 auto;-ms-flex:1 1 auto;flex:1 1 auto;display:block;border-bottom:none!important;-webkit-text-decoration:none!important;text-decoration:none!important;}.css-1cpqlp5:hover{-webkit-text-decoration:none!important;text-decoration:none!important;border-bottom:none!important;}.css-1cpqlp5:after{content:'Trust';position:relative;top:-1px;left:3px;font-weight:300;font-size:16px;color:var(--theme-ui-colors-primary);}</style><a class="css-1cpqlp5" href="/"><style data-emotion="css 1ygisgi">.css-1ygisgi{position:absolute;font-size:0px;}</style><span class="css-1ygisgi">Homepage</span><style data-emotion="css 4snsbd">.css-4snsbd{margin:0;display:inline;}</style><img src="data:image/svg+xml;base64,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" alt="Okta logo" height="34" width="100" class="css-4snsbd"/></a></div><style data-emotion="css mm2ixd">.css-mm2ixd{display:block;position:relative;cursor:pointer;}@media screen and (min-width: 1024px){.css-mm2ixd{display:none;}}.css-mm2ixd:focus{outline-color:var(--theme-ui-colors-primary);}</style><div tabindex="0" role="button" aria-label="Main navigation menu button" class="css-mm2ixd"><style data-emotion="css 1pwpr3n">.css-1pwpr3n{position:relative;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;height:50px;width:50px;margin-right:-10px;padding:10px;}</style><div class="css-1pwpr3n"><style data-emotion="css 4ljiep">.css-4ljiep{width:100%;border-bottom:4px solid;border-bottom-color:var(--theme-ui-colors-primary);margin:auto 0;-webkit-transition:opacity 0.35s ease-in-out,-webkit-transform 0.25s ease-in-out;transition:opacity 0.35s ease-in-out,transform 0.25s ease-in-out;opacity:1;-webkit-transform:translate3d(0, 0px, 0) scale(1);-moz-transform:translate3d(0, 0px, 0) scale(1);-ms-transform:translate3d(0, 0px, 0) scale(1);transform:translate3d(0, 0px, 0) scale(1);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-4ljiep{border-bottom-color:#00297A;}}</style><div class="css-4ljiep"></div><style data-emotion="css 135brw6">.css-135brw6{width:100%;border-bottom:4px solid;border-bottom-color:var(--theme-ui-colors-primary);margin:auto 0;-webkit-transition:opacity 0.35s ease-in-out,-webkit-transform 0.25s ease-in-out;transition:opacity 0.35s ease-in-out,transform 0.25s ease-in-out;-webkit-transform:translate3d(0, 0px, 0) scale(1);-moz-transform:translate3d(0, 0px, 0) scale(1);-ms-transform:translate3d(0, 0px, 0) scale(1);transform:translate3d(0, 0px, 0) scale(1);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-135brw6{border-bottom-color:#00297A;}}</style><div class="css-135brw6"></div><div class="css-4ljiep"></div></div></div></div><style data-emotion="css 88v9v3">.css-88v9v3{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex:1 0 100%;-ms-flex:1 0 100%;flex:1 0 100%;-webkit-align-items:flex-start;-webkit-box-align:flex-start;-ms-flex-align:flex-start;align-items:flex-start;position:fixed;visibility:hidden;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;margin-top:2rem;margin-bottom:6rem;min-height:0;opacity:0;}@media screen and (min-width: 1024px){.css-88v9v3{-webkit-flex:1 1 auto;-ms-flex:1 1 auto;flex:1 1 auto;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;position:relative;visibility:visible;-webkit-flex-direction:row;-ms-flex-direction:row;flex-direction:row;margin-top:0;margin-bottom:0;opacity:1;}}</style><div class="css-88v9v3"><style data-emotion="css 16zlbn9">.css-16zlbn9{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:end;-ms-flex-pack:end;-webkit-justify-content:flex-end;justify-content:flex-end;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;-webkit-align-items:flex-start;-webkit-box-align:flex-start;-ms-flex-align:flex-start;align-items:flex-start;width:100%;-webkit-flex:0 1 auto;-ms-flex:0 1 auto;flex:0 1 auto;}@media screen and (min-width: 1024px){.css-16zlbn9{-webkit-flex-direction:row;-ms-flex-direction:row;flex-direction:row;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;width:auto;-webkit-flex:1 1 auto;-ms-flex:1 1 auto;flex:1 1 auto;}}</style><nav class="css-16zlbn9"><style data-emotion="css 1iushd3">.css-1iushd3{-webkit-flex:0 1 auto;-ms-flex:0 1 auto;flex:0 1 auto;display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;position:relative;-webkit-align-items:flex-start;-webkit-box-align:flex-start;-ms-flex-align:flex-start;align-items:flex-start;-webkit-box-pack:start;-ms-flex-pack:start;-webkit-justify-content:flex-start;justify-content:flex-start;margin-bottom:1rem;padding-left:1.5rem;}@media screen and (min-width: 1024px){.css-1iushd3{-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;margin-bottom:0;}}.css-1iushd3:hover>a>span svg{-webkit-transform:rotate(-180deg);-moz-transform:rotate(-180deg);-ms-transform:rotate(-180deg);transform:rotate(-180deg);}.css-1iushd3:hover>a>span svg path{stroke:var(--theme-ui-colors-linkPrimaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-1iushd3:hover>a>span svg path{stroke:#1662dd;}}.css-1iushd3:hover>div{pointer-events:auto;opacity:1;}@media screen and (min-width: 1024px){.css-1iushd3:hover>div{-webkit-transform:translate3d(-50%, 0px, 0);-moz-transform:translate3d(-50%, 0px, 0);-ms-transform:translate3d(-50%, 0px, 0);transform:translate3d(-50%, 0px, 0);}}</style><div class="navItem-wrapper css-1iushd3"><style data-emotion="css fqmdoj">.css-fqmdoj{color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;border-bottom:1.25px solid;border-bottom-color:transparent;margin-bottom:-2px;}.css-fqmdoj+.CustomLink{margin-left:1rem;}.css-fqmdoj:hover{color:var(--theme-ui-colors-linkPrimaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-fqmdoj{color:#00297A;}.css-fqmdoj:hover{color:#1662dd;}}</style><a class="CustomLink css-fqmdoj" href="https://status.okta.com/">Status</a></div><div class="navItem-wrapper css-1iushd3"><a class="CustomLink css-fqmdoj" href="/security">Security</a></div><div class="navItem-wrapper css-1iushd3"><a class="CustomLink css-fqmdoj" href="/compliance">Compliance</a></div><div class="navItem-wrapper css-1iushd3"><a class="CustomLink css-fqmdoj" href="https://support.okta.com/help/s/">Help Center</a></div></nav><style data-emotion="css 11sth44">.css-11sth44 button[class*='Button-primary-regular']{margin-bottom:0;}.css-11sth44 button[class*='Button-secondary-regular']{margin-bottom:0;}</style><div class="css-11sth44"></div></div></div></div></header><style data-emotion="css 1mipbkz">.css-1mipbkz{margin-top:77px;}</style><main class="css-1mipbkz"><div class="css-o8v3tf"><style data-emotion="css 134t6qv">.css-134t6qv{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-flex-wrap:wrap;-webkit-flex-wrap:wrap;-ms-flex-wrap:wrap;flex-wrap:wrap;margin-left:-0.5rem;margin-right:-0.5rem;}@media screen and (min-width: 1024px){.css-134t6qv{margin-left:-0.75rem;margin-right:-0.75rem;}}@media screen and (min-width: 1200px){.css-134t6qv{margin-left:-1rem;margin-right:-1rem;}}@media screen and (min-width: 1700px){.css-134t6qv{margin-left:-1.25rem;margin-right:-1.25rem;}}</style><div class="css-134t6qv"><style data-emotion="css 16049n8">.css-16049n8{margin-left:0;margin-right:0;padding-left:0.5rem;padding-right:0.5rem;padding-top:0.5rem;padding-bottom:0.5rem;-webkit-flex:0 1 100%;-ms-flex:0 1 100%;flex:0 1 100%;width:100%;max-width:100%;min-width:100%;}@media screen and (min-width: 1024px){.css-16049n8{padding-left:0.75rem;padding-right:0.75rem;padding-top:0.75rem;padding-bottom:0.75rem;-webkit-flex:0 1 50%;-ms-flex:0 1 50%;flex:0 1 50%;width:50%;max-width:50%;min-width:50%;}}@media screen and (min-width: 1200px){.css-16049n8{padding-left:1rem;padding-right:1rem;padding-top:1rem;padding-bottom:1rem;-webkit-flex:0 1 75%;-ms-flex:0 1 75%;flex:0 1 75%;width:75%;max-width:75%;min-width:75%;}}@media screen and (min-width: 1700px){.css-16049n8{padding-left:1.25rem;padding-right:1.25rem;padding-top:1.25rem;padding-bottom:1.25rem;}}.css-16049n8 [class*='ColumnItem']{width:100%;max-width:100%;min-width:100%;padding-bottom:0;padding-top:1rem;}@media screen and (min-width: 320px){.css-16049n8 [class*='ColumnItem']{width:100%;max-width:100%;min-width:100%;padding-top:1rem;}}@media screen and (min-width: 1200px){.css-16049n8 [class*='ColumnItem']{width:50%;max-width:50%;min-width:50%;padding-top:0;}}@media screen and (min-width: 1400px){.css-16049n8 [class*='ColumnItem']{width:75%;max-width:75%;min-width:75%;}}.css-16049n8 [class*='ColumnItem']:first-of-type{padding-top:0;padding-bottom:1rem;}@media screen and (min-width: 320px){.css-16049n8 [class*='ColumnItem']:first-of-type{padding-bottom:1rem;}}@media screen and (min-width: 1200px){.css-16049n8 [class*='ColumnItem']:first-of-type{padding-bottom:0;}}</style><div class="ColumnItem css-16049n8"><style data-emotion="css 1j1ar2w">.css-1j1ar2w{margin-top:3rem;}</style><h1 class="css-1j1ar2w">Okta Browser Plugin Reflected Cross-Site Scripting CVE-2024-0981</h1></div></div><div class="css-134t6qv"><style data-emotion="css 13mtsxz">.css-13mtsxz{margin-left:0;margin-right:0;padding-left:0.5rem;padding-right:0.5rem;padding-top:0.5rem;padding-bottom:4px;-webkit-flex:1;-ms-flex:1;flex:1;}@media screen and (min-width: 1024px){.css-13mtsxz{padding-left:0.75rem;padding-right:0.75rem;padding-top:0.75rem;padding-bottom:0.75rem;}}@media screen and (min-width: 1200px){.css-13mtsxz{padding-left:1rem;padding-right:1rem;padding-top:1rem;padding-bottom:1rem;}}@media screen and (min-width: 1700px){.css-13mtsxz{padding-left:1.25rem;padding-right:1.25rem;padding-top:1.25rem;padding-bottom:1.25rem;}}</style><div class="ColumnItem css-13mtsxz"><style data-emotion="css jwrh12">.css-jwrh12{color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;border-bottom:1.25px solid;border-bottom-color:var(--theme-ui-colors-primary);margin-bottom:0;}.css-jwrh12+.CustomLink{margin-left:1rem;}.css-jwrh12:hover{color:var(--theme-ui-colors-linkPrimaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-jwrh12{color:#00297A;}.css-jwrh12:hover{color:#1662dd;}}</style><a class="CustomLink css-jwrh12" href="/security-advisories">View all security advisories</a></div></div><style data-emotion="css e6jt6h">.css-e6jt6h{padding-bottom:1rem;margin-bottom:1rem;padding:0 0 20px;}.css-e6jt6h h2,.css-e6jt6h h3,.css-e6jt6h h4,.css-e6jt6h h5{margin-bottom:1.5rem;margin-top:52px;}.css-e6jt6h h2:first-of-type,.css-e6jt6h h3:first-of-type,.css-e6jt6h h4:first-of-type,.css-e6jt6h h5:first-of-type{margin-top:16px;}.css-e6jt6h p{font-size:16px;color:var(--theme-ui-colors-black);line-height:140%;margin-bottom:1rem;}.css-e6jt6h td p{margin-bottom:0;}</style><div class="css-e6jt6h"><h3>Description</h3><p>Okta Browser Plugin versions 6.5.0 through 6.31.0 (Chrome/Edge/Firefox/Safari) are vulnerable to cross-site scripting. This issue occurs when the plugin prompts the user to save these credentials within Okta Personal. A fix was implemented to properly escape these fields, addressing the vulnerability. Importantly, if Okta Personal is not added to the plugin to enable multi-account view, the Workforce Identity Cloud plugin is not affected by this issue. </p><h3>Affected product and versions</h3><p>Okta users and customers that have currently installed versions 6.5.0 through 6.31.0 of the Okta Browser Plugin for Chrome, Edge, Firefox, and Safari and added Okta Personal to enable multi-account view.</p><h3>Resolution</h3><p>The vulnerability is fixed in Okta Browser Plugin version 6.32.0 for Chrome/Edge/Safari<!-- -->/Firefox<!-- -->.</p><p>Okta Admin Users can use the following query to search for users who are still using outdated versions of the plugin: <code>debugContext.debugData.oktaUserAgentExtended ne &quot;okta-browser-plugin/6.32.0&quot; and debugContext.debugData.oktaUserAgentExtended co &quot;okta-browser-plugin/&quot;</code></p><h3>Severity Details</h3><p>This issue occurred when a user inputted new credentials and the plugin prompted to save these within Okta Personal. If Okta Personal was not added to the Okta Browser Plugin, the plugin is not affected by this issue.</p><h3>CVE details</h3><table style="border-collapse:collapse;table-layout:fixed;vertical-align:baseline;max-width:670px"><tbody><tr><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>CVE ID</p></td><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p><a href="https://nvd.nist.gov/vuln/detail/CVE-2024-0981">CVE-2024-0981</a></p></td></tr><tr><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>Published Date</p></td><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p><u><b>2024-07-22</b></u></p></td></tr><tr><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>Vulnerability Type</p></td><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>Cross-site Scripting</p></td></tr><tr><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>CWE</p></td><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>CWE-79</p></td></tr><tr><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>CVSS v3</p></td><td style="border-bottom:1px solid #d7d7dc;padding:13.6px;max-width:32em"><p>Score: 7.1 Vector string: AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N</p></td></tr></tbody></table><p></p></div></div></main><style data-emotion="css 16f50vk">.css-16f50vk{background-color:var(--theme-ui-colors-primary);color:var(--theme-ui-colors-white);padding-top:1.5rem;padding-bottom:1.5rem;}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk{background-color:#00297A;color:#fff;}}.css-16f50vk h1,.css-16f50vk h2,.css-16f50vk h3,.css-16f50vk h4,.css-16f50vk h5,.css-16f50vk h6,.css-16f50vk p,.css-16f50vk strong,.css-16f50vk li,.css-16f50vk ol{color:#fff;border-color:#fff;}.css-16f50vk a{color:var(--theme-ui-colors-linkSecondaryColor);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;border-bottom:1px solid;border-bottom-color:var(--theme-ui-colors-primary);border-color:#fff;}.css-16f50vk a+.CustomLink{margin-left:1rem;}.css-16f50vk a:hover{color:var(--theme-ui-colors-linkSecondaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk a{color:#fff;}.css-16f50vk a:hover{color:#92BCFF;}}.css-16f50vk a[class*='Button-primary-regular']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:2px solid;border-radius:0;padding-top:0.5rem;padding-bottom:0.5rem;padding-left:1.5rem;padding-right:1.5rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-primary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:var(--theme-ui-colors-secondary);}.css-16f50vk a[class*='Button-primary-regular']+.Button,.css-16f50vk a[class*='Button-primary-regular']+.CustomLink{margin-left:1rem;}.css-16f50vk a[class*='Button-primary-regular']:hover{background-color:transparent;color:var(--theme-ui-colors-secondary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk a[class*='Button-primary-regular']{border-color:#00297A;color:#fff;background-color:#00297A;}.css-16f50vk a[class*='Button-primary-regular']:hover{color:#00297A;border-color:#00297A;}}.css-16f50vk a[class*='Button-primary-large']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:3px solid;border-radius:0;padding-top:1rem;padding-bottom:1rem;padding-left:2rem;padding-right:2rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1.25rem;line-height:130%;color:var(--theme-ui-colors-primary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:var(--theme-ui-colors-secondary);}.css-16f50vk a[class*='Button-primary-large']+.Button,.css-16f50vk a[class*='Button-primary-large']+.CustomLink{margin-left:1rem;}.css-16f50vk a[class*='Button-primary-large']:hover{background-color:transparent;color:var(--theme-ui-colors-secondary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk a[class*='Button-primary-large']{border-color:#00297A;color:#fff;background-color:#00297A;}.css-16f50vk a[class*='Button-primary-large']:hover{color:#00297A;border-color:#00297A;}}.css-16f50vk a[class*='Button-secondary-regular']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:2px solid;border-radius:0px;padding-top:0.5rem;padding-bottom:0.5rem;padding-left:1.5rem;padding-right:1.5rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-secondary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:transparent;}.css-16f50vk a[class*='Button-secondary-regular']+.Button,.css-16f50vk a[class*='Button-secondary-regular']+.CustomLink{margin-left:1rem;}.css-16f50vk a[class*='Button-secondary-regular']:hover{background-color:var(--theme-ui-colors-secondary);color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk a[class*='Button-secondary-regular']{border-color:#00297A;color:#00297A;}.css-16f50vk a[class*='Button-secondary-regular']:hover{background-color:#00297A;color:#fff;border-color:#00297A;}}.css-16f50vk a[class*='Button-secondary-large']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:3px solid;border-radius:0px;padding-top:1rem;padding-bottom:1rem;padding-left:2rem;padding-right:2rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1.25rem;line-height:130%;color:var(--theme-ui-colors-secondary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:transparent;}.css-16f50vk a[class*='Button-secondary-large']+.Button,.css-16f50vk a[class*='Button-secondary-large']+.CustomLink{margin-left:1rem;}.css-16f50vk a[class*='Button-secondary-large']:hover{background-color:var(--theme-ui-colors-secondary);color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk a[class*='Button-secondary-large']{border-color:#00297A;color:#00297A;}.css-16f50vk a[class*='Button-secondary-large']:hover{background-color:#00297A;color:#fff;border-color:#00297A;}}.css-16f50vk button{color:var(--theme-ui-colors-linkSecondaryColor);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;border-bottom:1px solid;border-bottom-color:var(--theme-ui-colors-primary);border-color:#fff;}.css-16f50vk button+.CustomLink{margin-left:1rem;}.css-16f50vk button:hover{color:var(--theme-ui-colors-linkSecondaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk button{color:#fff;}.css-16f50vk button:hover{color:#92BCFF;}}.css-16f50vk button[class*='Button-primary-regular']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:2px solid;border-radius:0;padding-top:0.5rem;padding-bottom:0.5rem;padding-left:1.5rem;padding-right:1.5rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-primary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:var(--theme-ui-colors-secondary);}.css-16f50vk button[class*='Button-primary-regular']+.Button,.css-16f50vk button[class*='Button-primary-regular']+.CustomLink{margin-left:1rem;}.css-16f50vk button[class*='Button-primary-regular']:hover{background-color:transparent;color:var(--theme-ui-colors-secondary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk button[class*='Button-primary-regular']{border-color:#00297A;color:#fff;background-color:#00297A;}.css-16f50vk button[class*='Button-primary-regular']:hover{color:#00297A;border-color:#00297A;}}.css-16f50vk button[class*='Button-primary-large']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:3px solid;border-radius:0;padding-top:1rem;padding-bottom:1rem;padding-left:2rem;padding-right:2rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1.25rem;line-height:130%;color:var(--theme-ui-colors-primary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:var(--theme-ui-colors-secondary);}.css-16f50vk button[class*='Button-primary-large']+.Button,.css-16f50vk button[class*='Button-primary-large']+.CustomLink{margin-left:1rem;}.css-16f50vk button[class*='Button-primary-large']:hover{background-color:transparent;color:var(--theme-ui-colors-secondary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk button[class*='Button-primary-large']{border-color:#00297A;color:#fff;background-color:#00297A;}.css-16f50vk button[class*='Button-primary-large']:hover{color:#00297A;border-color:#00297A;}}.css-16f50vk button[class*='Button-secondary-regular']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:2px solid;border-radius:0px;padding-top:0.5rem;padding-bottom:0.5rem;padding-left:1.5rem;padding-right:1.5rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1rem;line-height:140%;color:var(--theme-ui-colors-secondary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:transparent;}.css-16f50vk button[class*='Button-secondary-regular']+.Button,.css-16f50vk button[class*='Button-secondary-regular']+.CustomLink{margin-left:1rem;}.css-16f50vk button[class*='Button-secondary-regular']:hover{background-color:var(--theme-ui-colors-secondary);color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk button[class*='Button-secondary-regular']{border-color:#00297A;color:#00297A;}.css-16f50vk button[class*='Button-secondary-regular']:hover{background-color:#00297A;color:#fff;border-color:#00297A;}}.css-16f50vk button[class*='Button-secondary-large']{display:inline-block;-webkit-text-decoration:none!important;text-decoration:none!important;text-align:center;font-weight:normal;border:3px solid;border-radius:0px;padding-top:1rem;padding-bottom:1rem;padding-left:2rem;padding-right:2rem;margin-bottom:0.5rem;-webkit-transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;transition:color 0.25s ease,background-color 0.25s ease,border-color 0.25s ease;font-family:'ABCWhyte Medium','Helvetica Neue',sans-serif;font-size:1.25rem;line-height:130%;color:var(--theme-ui-colors-secondary);cursor:pointer;border-color:var(--theme-ui-colors-secondary);background-color:transparent;}.css-16f50vk button[class*='Button-secondary-large']+.Button,.css-16f50vk button[class*='Button-secondary-large']+.CustomLink{margin-left:1rem;}.css-16f50vk button[class*='Button-secondary-large']:hover{background-color:var(--theme-ui-colors-secondary);color:var(--theme-ui-colors-primary);-webkit-text-decoration:none;text-decoration:none;border-color:var(--theme-ui-colors-secondary);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-16f50vk button[class*='Button-secondary-large']{border-color:#00297A;color:#00297A;}.css-16f50vk button[class*='Button-secondary-large']:hover{background-color:#00297A;color:#fff;border-color:#00297A;}}@media screen and (min-width: 1024px){.css-16f50vk{padding-top:3rem;padding-bottom:3rem;}}@media screen and (min-width: 1200px){.css-16f50vk{padding-top:6rem;padding-bottom:6rem;}}</style><div class="Footer css-16f50vk"><div class="css-o8v3tf"><style data-emotion="css 2gusku">.css-2gusku{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-flex-direction:column;-ms-flex-direction:column;flex-direction:column;-webkit-align-items:flex-start;-webkit-box-align:flex-start;-ms-flex-align:flex-start;align-items:flex-start;-webkit-box-pack:justify;-webkit-justify-content:space-between;justify-content:space-between;text-align:left;}@media screen and (min-width: 1400px){.css-2gusku{-webkit-flex-direction:row;-ms-flex-direction:row;flex-direction:row;-webkit-align-items:flex-end;-webkit-box-align:flex-end;-ms-flex-align:flex-end;align-items:flex-end;text-align:left;}}</style><div class="Footer-content css-2gusku"><style data-emotion="css pkdu58">.css-pkdu58{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:start;-ms-flex-pack:start;-webkit-justify-content:flex-start;justify-content:flex-start;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;-webkit-box-flex-wrap:wrap;-webkit-flex-wrap:wrap;-ms-flex-wrap:wrap;flex-wrap:wrap;-webkit-flex:1 1 auto;-ms-flex:1 1 auto;flex:1 1 auto;padding-left:0;margin-top:3rem;margin-bottom:3rem;margin-left:0;margin-right:0;padding-bottom:3rem;width:100%;border-bottom:1px solid;border-top-color:var(--theme-ui-colors-gray700);border-bottom-color:var(--theme-ui-colors-gray700);}@media screen and (min-width: 1400px){.css-pkdu58{-webkit-box-pack:justify;-webkit-justify-content:space-between;justify-content:space-between;-webkit-box-flex-wrap:no-wrap;-webkit-flex-wrap:no-wrap;-ms-flex-wrap:no-wrap;flex-wrap:no-wrap;-webkit-flex:0 1 auto;-ms-flex:0 1 auto;flex:0 1 auto;margin-top:0;margin-bottom:0;margin-left:1.5rem;margin-right:1.5rem;padding-bottom:0;width:auto;border-bottom:none;}}.css-pkdu58>li{-webkit-flex:0 1 auto;-ms-flex:0 1 auto;flex:0 1 auto;padding-right:1rem;margin-right:1rem;list-style-type:none;font-size:16px;display:block;line-height:1;border-right:solid 1px;border-color:var(--theme-ui-colors-white);}.css-pkdu58>li:first-of-type{margin-left:0;}.css-pkdu58>li:last-of-type{border-right:solid 0px;}.css-pkdu58>li a{font-size:16px;}</style><ul class="css-pkdu58"><li><style data-emotion="css po4qbp">.css-po4qbp{color:var(--theme-ui-colors-linkSecondaryColor);-webkit-text-decoration:none;text-decoration:none;-webkit-transition:all 0.3s ease;transition:all 0.3s ease;font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;border-bottom:1px solid;border-bottom-color:var(--theme-ui-colors-primary);border-color:#fff;}.css-po4qbp+.CustomLink{margin-left:1rem;}.css-po4qbp:hover{color:var(--theme-ui-colors-linkSecondaryHoverColor);}@media all and (-ms-high-contrast: none),(-ms-high-contrast: active){.css-po4qbp{color:#fff;}.css-po4qbp:hover{color:#92BCFF;}}</style><a href="https://okta.com" class="css-po4qbp">Okta.com</a></li><li><a href="https://www.okta.com/privacy/" class="css-po4qbp">Privacy</a></li><li><a href="https://trust.okta.com/security-advisories/" class="css-po4qbp">Security Advisories</a></li><li><a href="https://sec.okta.com/articles" class="css-po4qbp">Security Blog</a></li></ul><style data-emotion="css 1a9fd9c">.css-1a9fd9c{display:-webkit-box;display:-webkit-flex;display:-ms-flexbox;display:flex;-webkit-box-pack:end;-ms-flex-pack:end;-webkit-justify-content:flex-end;justify-content:flex-end;-webkit-align-items:center;-webkit-box-align:center;-ms-flex-align:center;align-items:center;width:100%;}@media screen and (min-width: 1400px){.css-1a9fd9c{-webkit-align-items:flex-end;-webkit-box-align:flex-end;-ms-flex-align:flex-end;align-items:flex-end;width:auto;}}</style><div class="css-1a9fd9c"><style data-emotion="css uc86u8">.css-uc86u8{text-align:right;}</style><div class="css-uc86u8"><style data-emotion="css 1gt4ocn">.css-1gt4ocn{font-family:'ABCWhyte Book','Helvetica Neue',sans-serif;font-size:16px;line-height:120%;color:var(--theme-ui-colors-primary);margin-top:3px;}</style><p class="css-1gt4ocn">漏 2024 Okta, Inc. All rights reserved.</p></div></div></div></div></div><div></div></div></div><div id="gatsby-announcer" style="position:absolute;top:0;width:1px;height:1px;padding:0;overflow:hidden;clip:rect(0, 0, 0, 0);white-space:nowrap;border:0" aria-live="assertive" aria-atomic="true"></div></div><script src="https://geoip-js.com/js/apis/geoip2/v2.1/geoip2.js" async=""></script><script id="gatsby-script-loader">/*<![CDATA[*/window.pagePath="/security-advisories/okta-browser-plugin-reflected-cross-site-scripting-cve-2024-0981/";/*]]>*/</script><script id="gatsby-chunk-mapping">/*<![CDATA[*/window.___chunkMapping={"polyfill":["/polyfill-ea100fe6f02bbc648246.js"],"app":["/app-8708b3310e611b4a31c2.js"],"component---src-pages-404-js":["/component---src-pages-404-js-e9db101bd4cad7049883.js"],"component---src-pages-index-js":["/component---src-pages-index-js-273f8ff5cb56152fe3c1.js"],"component---src-pages-security-advisories-js":["/component---src-pages-security-advisories-js-6b48179346347488a051.js"],"component---src-templates-security-advisories-js":["/component---src-templates-security-advisories-js-18487b466f28d0df9347.js"]};/*]]>*/</script><script src="/polyfill-ea100fe6f02bbc648246.js" nomodule=""></script><script src="/component---src-templates-security-advisories-js-18487b466f28d0df9347.js" async=""></script><script src="/app-8708b3310e611b4a31c2.js" async=""></script><script src="/34321f76-ff1460702b8c0729641b.js" async=""></script><script src="/framework-89031d015d5410b07fe1.js" async=""></script><script src="/webpack-runtime-366dd9202e650ca1d224.js" async=""></script><script> (function() { var didInit = false; function initMunchkin() { if(didInit === false) { didInit = true; Munchkin.init('855-QAH-699'); } } var s = document.createElement('script'); s.type = 'text/javascript'; s.async = true; s.src = '//munchkin.marketo.net/munchkin.js'; s.onreadystatechange = function() { if (this.readyState == 'complete' || this.readyState == 'loaded') { initMunchkin(); } }; s.onload = initMunchkin; document.getElementsByTagName('head')[0].appendChild(s); })(); </script></body></html>

Pages: 1 2 3 4 5 6 7 8 9 10