Iam Security Vulnerabilities and Issues — Iam CVE List

Lucene search

SoffidIam

3 matches found

CVE•added 2025/04/21 1:15 p.m.•69 views

CVE-2025-32408

In Soffid Console 3.6.31 before 3.6.32, authorization to use the pam service is mishandled.

2.5CVSS3.7AI score0.00017EPSS

CVE•added 2024/06/27 4:15 p.m.•40 views

CVE-2024-39669

In the Console in Soffid IAM before 3.5.39, necessary checks were not applied to some Java objects. A malicious agent could possibly execute arbitrary code in the Sync Server and compromise security.

9.8CVSS7.8AI score0.00157EPSS

CVE•added 2017/06/02 5:29 a.m.•32 views

CVE-2017-9363

Untrusted Java serialization in Soffid IAM console before 1.7.5 allows remote attackers to achieve arbitrary remote code execution via a crafted authentication request.

9.8CVSS9.7AI score0.05471EPSS