PatchSiren

Ping Identity CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

MEDIUM Ping Identity CVE published 2026-06-12

CVE-2026-20746

CVE-2026-20746 is a MEDIUM severity vulnerability in Ping Identity PingDirectory. The vulnerability allows authorized users to exhaust the Java memory heap when recent login history is enabled and copying virtual attributes that reference ds-privilege-name values. The vulnerability was published on 2026-06-12T04:17:04.510Z and last modified on 2026-06-12T16:06:17.027Z.