Every CVE whose affected-product data names Sailpoint Identityiq, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2024-2227 — CVSS 10.0 (critical): This vulnerability allows access to arbitrary files in the application server file system due to a path traversal vulnerability in…
CVE-2024-10905 — CVSS 10.0 (critical): IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p2, IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p5, IdentityIQ 8.2 and all 8.2…
CVE-2023-32217 — CVSS 9.0 (critical): IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p3, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p6, IdentityIQ 8.1 and all 8.1…
CVE-2022-46835 — CVSS 8.8 (high): IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1…
CVE-2026-5712 — CVSS 8.0 (high): This vulnerability impacts all versions of IdentityIQ and allows an authenticated identity that is the requestor or assignee of a work item…
CVE-2024-1714 — CVSS 7.1 (high): An issue exists in all supported versions of IdentityIQ Lifecycle Manager that can result if an entitlement with a value containing leading…
CVE-2024-2228 — CVSS 7.1 (high): This vulnerability allows an authenticated user to perform a Lifecycle Manager flow or other QuickLink for a target user outside of the…
CVE-2025-10280 — CVSS 7.1 (high): IdentityIQ 8.5, IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p4, IdentityIQ 8.3 and all 8.3 patch levels including 8.3p5, and all…
CVE-2022-45435 — CVSS 6.8 (medium): IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1…