Saviynt Enterprise Identity Cloud — known CVE vulnerabilities
Every CVE whose affected-product data names Saviynt Enterprise Identity Cloud, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2022-23855 — CVSS 9.8 (critical): An issue was discovered in Saviynt Enterprise Identity Cloud (EIC) 5.5 SP2.x. An authentication bypass in ECM/maintenance/forgotpasswordstep…
CVE-2022-23856 — CVSS 5.3 (medium): An issue was discovered in Saviynt Enterprise Identity Cloud (EIC) 5.5 SP2.x. An attacker can enumerate users by changing the id parameter…