CVE-2024-10905, security-updates and security-advisories

Dear SailPoint Team,

Why is the vulnerability announcement IdentityIQ Improper Access Control Vulnerability not listed either here SailPoint Security Advisories , nor in the Community ( Security Updates - SailPoint Developer Community ) ?

What is the purpose of Security Updates - SailPoint Developer Community , as I only see information from 2022?

3 Likes

Hi Andrei,
That is an excellent question. I’ll look into this!

In the meantime I assume anything that would’ve been pushed to Incidents would also be posted at status.sailpoint.com.