CVE-2022-45435

SailPoint IdentityIQ Access Control Bypass

Description

IdentityIQ 8.3 and all 8.3 patch levels prior to 8.3p2, IdentityIQ 8.2 and all 8.2 patch levels prior to 8.2p5, IdentityIQ 8.1 and all 8.1 patch levels prior to 8.1p7, IdentityIQ 8.0 and all 8.0 patch levels prior to 8.0p6, and all prior versions allow authenticated users assigned the Identity Administrator capability or any custom capability that contains the SetIdentityForwarding right to modify the work item forwarding configuration for identities other than the ones that should be allowed by Lifecycle Manager Quicklink Population configuration.

Remediation

Workaround:

  • Remove the SetIdentityForwarding right from all IdentityIQ capabilities or unassign any capability containing the SetIdentityForwarding right from all identities. In this mitigated state, work item forwarding can still be configured by an identity by modifying user preferences.

Category

6.8
CVSS
Severity: Medium
CVSS 3.1 •
EPSS 0.11%
Vendor Advisory sailpoint.com
Affected: SailPoint IdentityIQ
Published at:
Updated at:

References

Link Tags
https://www.sailpoint.com/security-advisories/sailpoint-identityiq-identity-forwarding-vulnerability-cve-2022-45435/ vendor advisory

Frequently Asked Questions

What is the severity of CVE-2022-45435?
CVE-2022-45435 has been scored as a medium severity vulnerability.
How to fix CVE-2022-45435?
As a workaround for remediating CVE-2022-45435: Remove the SetIdentityForwarding right from all IdentityIQ capabilities or unassign any capability containing the SetIdentityForwarding right from all identities. In this mitigated state, work item forwarding can still be configured by an identity by modifying user preferences.
Is CVE-2022-45435 being actively exploited in the wild?
As for now, there are no information to confirm that CVE-2022-45435 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2022-45435?
CVE-2022-45435 affects SailPoint IdentityIQ.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.