One critical vulnerability in the single sign-on identity management tool was fixed, but a second remains unpatched, security researchers say A critical vulnerability that could allow remote attackers ...