CVE-2024-10905 Information

Description

IdentityIQ 8.4 and all 8.4 patch levels prior to 8.4p2 IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p5 IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p8 and all prior versions allows HTTP access to static content in the IdentityIQ application directory that should be protected.

Reference

https://www.sailpoint.com/security-advisories/