A file path traversal vulnerability was identified in the DelimitedFileConnector Cloud Connector that allowed an authenticated administrator to set arbitrary connector attributes, including the “file“ attribute, which in turn allowed the user to access files uploaded for other sources.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.sailpoint.com/security-advisories/ |
History
No history.
MITRE
Status: PUBLISHED
Assigner: SailPoint
Published: 2024-05-15T15:49:36.094Z
Updated: 2024-08-01T20:05:08.329Z
Reserved: 2024-04-04T16:14:52.704Z
Link: CVE-2024-3318
Vulnrichment
Updated: 2024-08-01T20:05:08.329Z
NVD
Status : Awaiting Analysis
Published: 2024-05-15T16:15:10.963
Modified: 2024-05-15T16:40:19.330
Link: CVE-2024-3318
Redhat
No data.