Description

Kiuwan SAST improperly authorizes SSO logins for locally disabled mapped user accounts, allowing disabled users to continue accessing the application. Kiuwan Cloud was affected, and Kiuwan SAST on-premise (KOP) was affected before 2.8.2509.4.

INFO

Published Date :

2026-04-14T11:26:55.274Z

Last Modified :

2026-04-14T18:24:36.801Z

Source :

SEC-VLab
AFFECTED PRODUCTS

The following products are affected by CVE-2026-24069 vulnerability.

Vendors Products
Kiuwan
  • Sast
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-24069.

URL Resource
http://seclists.org/fulldisclosure/2026/Apr/5 cve-icon
https://r.sec-consult.com/kiuwanlock cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact