Security Advisory

CVE-2024-3317

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-15 15:55:07

Last updated 2024-08-01 20:05:08

Assigner SailPoint

State PUBLISHED

Description

An improper access control was identified in the Identity Security Cloud (ISC) message server API that allowed an authenticated user to exfiltrate job processing metadata (opaque messageIDs, work queue depth and counts) for other tenants.

← Browse all CVEs View on cve.org ↗