Insecure Direct Object Referenc (IDOR) Security Update Advisory (CVE-2024-56404)

Jan 31 2025

Overview

We have released a security update that addresses a vulnerability in Insecure Direct Object Reference (IDOR). Users of affected products are advised to update to the latest version.

Affected Products

CVE-2024-56404

Insecure Direct Object Reference (IDOR) Versions: 9.0.x through 9.2.1 (inclusive)

Resolved Vulnerabilities

Insecure Direct Object Reference Vulnerability (CVE-2024-56404)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-56404

Insecure Direct Object Reference (IDOR) version: 9.3 or hotfix version

References

[1] Identity Manager Product Notification
https://support.oneidentity.com/product-notification/noti-00001678

Insecure Direct Object Referenc (IDOR) Security Update Advisory (CVE-2024-56404)

ManageEngine (Applications Manager) Product January 2025 Security Update Advisory

Dell Product Security Update Advisory (CVE-2025-23374)

Tags:

ManageEngine (Applications Manager) Product January 2025 Security Update Advisory

Dell Product Security Update Advisory (CVE-2025-23374)