CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-5712

This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned capability that would allow role editing.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.7%

CVSS Severity

CVSS v3 Score 8.0

References

https://www.sailpoint.com/security-advisories/sailpoint-identityiq-role-editor-incorrect-authorization-vulnerability-cve-2026-5712

Products affected by CVE-2026-5712

Sailpoint » Identityiq » Version: 7.1

cpe:2.3:a:sailpoint:identityiq:7.1
Sailpoint » Identityiq » Version: 7.2

cpe:2.3:a:sailpoint:identityiq:7.2
Sailpoint » Identityiq » Version: 7.3

cpe:2.3:a:sailpoint:identityiq:7.3
Sailpoint » Identityiq » Version: 8.0

cpe:2.3:a:sailpoint:identityiq:8.0
Sailpoint » Identityiq » Version: 8.1

cpe:2.3:a:sailpoint:identityiq:8.1
Sailpoint » Identityiq » Version: 8.2

cpe:2.3:a:sailpoint:identityiq:8.2
Sailpoint » Identityiq » Version: 8.3

cpe:2.3:a:sailpoint:identityiq:8.3
Sailpoint » Identityiq » Version: 8.4

cpe:2.3:a:sailpoint:identityiq:8.4
Sailpoint » Identityiq » Version: 8.5

cpe:2.3:a:sailpoint:identityiq:8.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-5712

Products

Pricing

Contact Us