A
n issue exists in all supported versions of IdentityIQ Lifecycle Manager that can result if an entitlement with a value containing leading or trailing whitespace is requested by an authenticated user in an access request.
References
Configurations
Configuration 1 (hide)
|
History
30 Sep 2025, 16:56
| Type | Values Removed | Values Added |
|---|---|---|
| CWE |
06 May 2025, 17:45
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:sailpoint:identityiq:8.3:patch1:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch1:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.2:patch2:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch4:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch2:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch5:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.3:-:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.4:-:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:-:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.2:patch1:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch3:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.2:-:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.2:patch4:*:*:*:*:*:* cpe:2.3:a:sailpoint:identityiq:8.1:patch6:*:*:*:*:*:* |
|
| First Time |
Sailpoint
Sailpoint identityiq |
|
| References | () https://www.sailpoint.com/security-advisories/sailpoint-identityiq-access-request-for-entitlement-values-with-leading-trailing-whitespace-cve-2024-1714/ - Third Party Advisory |
18 Dec 2024, 18:15
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-1284 |
21 Nov 2024, 08:51
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://www.sailpoint.com/security-advisories/sailpoint-identityiq-access-request-for-entitlement-values-with-leading-trailing-whitespace-cve-2024-1714/ - |
Information
Published : 2024-02-21 17:15
Updated : 2025-09-30 16:56
NVD link : CVE-2024-1714
Mitre link : CVE-2024-1714
CVE.ORG link : CVE-2024-1714
JSON object : View
Products Affected
CWE
CWE-20
Improper Input Validation