CVE-2024-56404 Information

Description

In One Identity Identity Manager 9.x before 9.3 an insecure direct object reference (IDOR) vulnerability allows privilege escalation. Only On-Premise installations are affected.

Reference

https://support.oneidentity.com/product-notification/noti-00001678 https://support.oneidentity.com/technical-documents/identity-manager/9.3/release-notes/ https://www.oneidentity.com/community/identity-manager/