How severe is CVE-2024-3317?

CVE-2024-3317 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-3317

6.5MEDIUM

An improper access control was identified in the Identity Security Cloud (ISC) message server API that allowed an authenticated user to exfiltrate job processing metadata (opaque messageIDs, work queu

Published: 5/15/2024Updated: 11/21/2024

Description

An improper access control was identified in the Identity Security Cloud (ISC) message server API that allowed an authenticated user to exfiltrate job processing metadata (opaque messageIDs, work queue depth and counts) for other tenants.

AI AnalysisPowered by AI

References

https://www.sailpoint.com/security-advisories/
https://www.sailpoint.com/security-advisories/