{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-3319", "assignerOrgId": "2cfc7547-56a0-4049-8b52-c3078e8a8719", "state": "PUBLISHED", "assignerShortName": "SailPoint", "dateReserved": "2024-04-04T16:14:54.310Z", "datePublished": "2024-05-15T15:44:26.537Z", "dateUpdated": "2024-08-16T15:01:04.733Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Identity Security Cloud", "vendor": "SailPoint", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An issue was identified in the Identity Security Cloud (</span><span style=\"background-color: rgb(255, 255, 255);\">ISC</span><span style=\"background-color: rgb(255, 255, 255);\">) </span><em>Transform preview</em><span style=\"background-color: rgb(255, 255, 255);\"> and </span><em>IdentityProfile preview</em> <span style=\"background-color: rgb(255, 255, 255);\">API</span><span style=\"background-color: rgb(255, 255, 255);\"> endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host.</span>"}], "value": "An issue was identified in the Identity Security Cloud (ISC) Transform preview and IdentityProfile preview API endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host."}], "impacts": [{"capecId": "CAPEC-242", "descriptions": [{"lang": "en", "value": "CAPEC-242 Code Injection"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-94", "description": "CWE-94 Improper Control of Generation of Code ('Code Injection')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "2cfc7547-56a0-4049-8b52-c3078e8a8719", "shortName": "SailPoint", "dateUpdated": "2024-05-15T15:55:24.403Z"}, "references": [{"url": "https://www.sailpoint.com/security-advisories/"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">This issue has been resolved. No further action is needed.</span>\n\n<br>"}], "value": "This issue has been resolved. No further action is needed."}], "source": {"discovery": "UNKNOWN"}, "title": "Security implication in SailPoint Identity Security Cloud IdentityProfile API Endpoints", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.511Z"}, "title": "CVE Program Container", "references": [{"url": "https://www.sailpoint.com/security-advisories/", "tags": ["x_transferred"]}]}, {"affected": [{"vendor": "sailpoint", "product": "identity_security_cloud", "cpes": ["cpe:2.3:a:sailpoint:identity_security_cloud:*:*:*:*:*:*:*:*"], "defaultStatus": "unaffected", "versions": [{"version": "0", "status": "affected", "lessThan": "*", "versionType": "custom"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-08-09T20:23:55.262743Z", "id": "CVE-2024-3319", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-16T15:01:04.733Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://www.sailpoint.com/security-advisories/", "tags": ["x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.511Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-3319", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2024-08-09T20:23:55.262743Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:sailpoint:identity_security_cloud:*:*:*:*:*:*:*:*"], "vendor": "sailpoint", "product": "identity_security_cloud", "versions": [{"status": "affected", "version": "0", "lessThan": "*", "versionType": "custom"}], "defaultStatus": "unaffected"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-08-16T15:00:54.586Z"}}], "cna": {"title": "Security implication in SailPoint Identity Security Cloud IdentityProfile API Endpoints", "source": {"discovery": "UNKNOWN"}, "impacts": [{"capecId": "CAPEC-242", "descriptions": [{"lang": "en", "value": "CAPEC-242 Code Injection"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "SailPoint", "product": "Identity Security Cloud", "versions": [{"status": "affected", "version": "n/a"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "This issue has been resolved. No further action is needed.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">This issue has been resolved. No further action is needed.</span>\n\n<br>", "base64": false}]}], "references": [{"url": "https://www.sailpoint.com/security-advisories/"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "An issue was identified in the Identity Security Cloud (ISC) Transform preview and IdentityProfile preview API endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host.", "supportingMedia": [{"type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">An issue was identified in the Identity Security Cloud (</span><span style=\"background-color: rgb(255, 255, 255);\">ISC</span><span style=\"background-color: rgb(255, 255, 255);\">) </span><em>Transform preview</em><span style=\"background-color: rgb(255, 255, 255);\"> and </span><em>IdentityProfile preview</em> <span style=\"background-color: rgb(255, 255, 255);\">API</span><span style=\"background-color: rgb(255, 255, 255);\"> endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host.</span>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-94", "description": "CWE-94 Improper Control of Generation of Code ('Code Injection')"}]}], "providerMetadata": {"orgId": "2cfc7547-56a0-4049-8b52-c3078e8a8719", "shortName": "SailPoint", "dateUpdated": "2024-05-15T15:55:24.403Z"}}}, "cveMetadata": {"cveId": "CVE-2024-3319", "state": "PUBLISHED", "dateUpdated": "2024-08-16T15:01:04.733Z", "dateReserved": "2024-04-04T16:14:54.310Z", "assignerOrgId": "2cfc7547-56a0-4049-8b52-c3078e8a8719", "datePublished": "2024-05-15T15:44:26.537Z", "assignerShortName": "SailPoint"}, "dataVersion": "5.1"}

{"descriptions": [{"lang": "en", "value": "An issue was identified in the Identity Security Cloud (ISC) Transform preview and IdentityProfile preview API endpoints that allowed an authenticated administrator to execute user-defined templates as part of attribute transforms which could allow remote code execution on the host."}, {"lang": "es", "value": "Se identific\u00f3 un problema en los endpoints de la API de vista previa de Transform de Identity Security Cloud (ISC) y de vista previa de IdentityProfile que permit\u00edan que un administrador autenticado ejecutara plantillas definidas por el usuario como parte de las transformaciones de atributos, lo que podr\u00eda permitir la ejecuci\u00f3n remota de c\u00f3digo en el host."}], "id": "CVE-2024-3319", "lastModified": "2024-11-21T09:29:23.250", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.1, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 6.0, "source": "[email protected]", "type": "Secondary"}]}, "published": "2024-05-15T16:15:11.170", "references": [{"source": "[email protected]", "url": "https://www.sailpoint.com/security-advisories/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.sailpoint.com/security-advisories/"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "[email protected]", "type": "Secondary"}]}

{}