Skip to main content

Identityiq EUVDEUVD-2026-26260

| CVE-2026-5712 HIGH
Incorrect Authorization (CWE-863)
2026-04-29 SailPoint
8.0
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
8.0 HIGH
AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

4
Patch released
Apr 30, 2026 - 15:48 nvd
Patch available
Patch available
Apr 29, 2026 - 19:02 EUVD
EUVD ID Assigned
Apr 29, 2026 - 18:00 euvd
EUVD-2026-26260
CVE Published
Apr 29, 2026 - 17:18 nvd
HIGH 8.0

DescriptionCVE.org

This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned capability that would allow role editing.

Analysis

This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item to edit the definition of a role without having an assigned capability that would allow role editing.

Share

EUVD-2026-26260 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy