Browse all 9 CVE security advisories affecting SailPoint. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SailPoint provides identity governance and administration solutions to manage user access across enterprise systems. Historically, vulnerabilities have included remote code execution, cross-site scripting, and privilege escalation, with nine CVEs currently recorded. The platform's complex integrations and extensive API surface have contributed to security flaws. While no major public incidents have been widely reported, the presence of multiple CVEs indicates potential attack vectors. Organizations using SailPoint should prioritize regular patching and access control reviews to mitigate risks associated with these vulnerabilities.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-3317 | SailPoint Identity Security Cloud Improper Access Control — Identity Security CloudCWE-1284 | 6.5 | Medium | 2024-05-15 |
| CVE-2024-3318 | SailPoint Identity Security Cloud Connector File Path Traversal Vulnerability — Identity Security CloudCWE-22 | 4.2 | Medium | 2024-05-15 |
| CVE-2024-3319 | Security implication in SailPoint Identity Security Cloud IdentityProfile API Endpoints — Identity Security CloudCWE-94 | 9.1 | Critical | 2024-05-15 |
This page lists every published CVE security advisory associated with SailPoint. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.