How severe is CVE-2024-3319?

CVE-2024-3319 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2024-3319

9.1CRITICAL

An issue was identified in the Identity Security Cloud (ISC) Transform preview and IdentityProfile preview API endpoints that allowed an authenticated administrator to execute user-defined templates a

Published: 5/15/2024Updated: 11/21/2024

Description

An issue was identified in the Identity Security Cloud (ISC) Transform preview and IdentityProfile preview API endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host.

AI AnalysisPowered by AI

References

https://www.sailpoint.com/security-advisories/
https://www.sailpoint.com/security-advisories/