Vulnerability Details CVE-2024-2228
This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the defined QuickLink Population.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.0%
CVSS Severity
CVSS v3 Score 7.1
References
Products affected by CVE-2024-2228
-
cpe:2.3:a:sailpoint:identityiq:7.1
-
cpe:2.3:a:sailpoint:identityiq:7.2
-
cpe:2.3:a:sailpoint:identityiq:7.3
-
cpe:2.3:a:sailpoint:identityiq:8.0
-
cpe:2.3:a:sailpoint:identityiq:8.1
-
cpe:2.3:a:sailpoint:identityiq:8.2
-
cpe:2.3:a:sailpoint:identityiq:8.3
-
cpe:2.3:a:sailpoint:identityiq:8.4