Kiuwan Sast
4 CVEs affecting Kiuwan Sast. Latest disclosed: 2026-04-14. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-24069 | Medium | 5.4 | 2026-04-14 | Kiuwan SAST improperly authorizes SSO logins for locally disabled mapped user accounts, allowing disabled users to continue accessing the application. Kiuwan C… |
CVE-2023-49112 | | 2024-06-20 | Kiuwan provides an API endpoint /saas/rest/v1/info/application to get information about any application, providing only its name via the "application" param… | |
CVE-2023-49111 | | 2024-06-20 | For Kiuwan installations with SSO (single sign-on) enabled, an unauthenticated reflected cross-site scripting attack can be performed on the login page "logi… | |
CVE-2023-49110 | | 2024-06-20 | When the Kiuwan Local Analyzer uploads the scan results to the Kiuwan SAST web application (either on-premises or cloud/SaaS solution), the transmitted data … |