NHS urges orgs to apply security update for Okta Client RCE bug

UK’s NHS Digital has advised all organisations to update their Okta Advanced Server Client due to a remote code execution (RCE) vulnerability. The flaw, tagged as CVE-2022-24295, allows remote attackers to control systems and perform silent data exfiltration. The vulnerability affects all versions of the server access client before 1.57.0, and the NHS has urged system administrators to upgrade immediately as cloud threats emerge.