ByteOS Network

NVD Vulnerability Details :

CVE-2025-66033

Awaiting Analysis

Source-security-advisories@github.com

Published At-10 Dec, 2025 | 22:16

Updated At-12 Dec, 2025 | 15:18

Okta Java Management SDK facilitates interactions with the Okta management API. In versions 21.0.0 through 24.0.0, specific multithreaded implementations may encounter memory issues as threads are not properly cleaned up after requests are completed. Over time, this can degrade performance and availability in long-running applications and may result in a denial-of-service condition under sustained load. In addition to using the affected versions, users may be at risk if they are implementing a long-running application using the ApiClient in a multi-threaded manner. This issue is fixed in version 24.0.1.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	5.3	MEDIUM	CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Type: Secondary

Version: 3.1

Base score: 5.3

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Weaknesses

CWE ID	Type	Source
CWE-401	Secondary	security-advisories@github.com

CWE ID: CWE-401

Type: Secondary

Source: security-advisories@github.com

References

Hyperlink	Source	Resource
https://github.com/okta/okta-sdk-java/commit/1daa9229a70fc38fb252aeaa637f82d0b0729b3f	security-advisories@github.com	N/A
https://github.com/okta/okta-sdk-java/security/advisories/GHSA-qhr6-6cgv-6638	security-advisories@github.com	N/A

Hyperlink: https://github.com/okta/okta-sdk-java/commit/1daa9229a70fc38fb252aeaa637f82d0b0729b3f

Source: security-advisories@github.com

Resource: N/A

Hyperlink: https://github.com/okta/okta-sdk-java/security/advisories/GHSA-qhr6-6cgv-6638

Source: security-advisories@github.com

Resource: N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History