SailPoint IdentityIQ Role Editor Incorrect Authorization Vulnerability

Vulnerability

An incorrect authorization vulnerability has been identified in SailPoint IdentityIQ, affecting all versions. This vulnerability allows an authenticated user, who is either the requestor or assignee of a work item, to edit the definition of a role. The issue arises without the user having an assigned capability that typically permits role editing.

Impact

Exploitation of this vulnerability could lead to unauthorized modifications of role definitions, potentially allowing users to gain inappropriate access or privileges within the application.

Added: Apr 29, 2026, 6:19 PM

Updated: Apr 29, 2026, 6:19 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

5.9

remediation

0.0

relevance

6.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

5.9

remediation

0.0

relevance

6.9

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

SailPoint IdentityIQ Role Editor Incorrect Authorization Vulnerability

Vulnerability

Impact

Affected Products

SailPoint IdentityIQ

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating