Unrated severityNVD Advisory· Published Dec 2, 2024· Updated Jan 6, 2025
IdentityIQ Improper Access Control VulnerabilityIdentityIQ Improper Access Control Vulnerability
CVE-2024-10905
Description
IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p2, IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p5, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p8, and all prior versions allow HTTP/HTTPS access to static content in the IdentityIQ application directory that should be protected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<8.2p8, <8.3p5, <8.4p2+ 1 more
- (no CPE)range: <8.2p8, <8.3p5, <8.4p2
- (no CPE)range: 8.2
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.