oneidentity
Security Risk Profile
45
/100
mediumSecurity Risk Score
Comprehensive risk assessment based on 14 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from October 28, 2002 to present
14
Total CVEs
10
Critical+High
0
Exploited
6
Unpatched
Threat Assessment
Avg CVSS
7.5
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
6
Critical/High
Risk Level
45/100
medium
Severity Distribution
Critical
2High
8Medium
4Low
0Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
Integer Overflow
1
2
CSRF
1
3
Buffer Overflow
1
Most Affected Products
1. Oneidentity Syslog-ng25
2. Oneidentity Password Manager5
3. Oneidentity Cloud Access Manager5
4. Oneidentity Syslog-ng Store Box2
5. syslog-ng syslog-ng1
Recent Vulnerabilities
See more →CVE-2024-47619
CVSS 7.5high
tranport: TLS host name wildcard matching too lax
5/7/2025
CVE-2023-48654
CVSS 9.8critical
12/25/2023🔧 No Patch
CVE-2023-51772
CVSS 8.8high
12/25/2023🔧 No Patch
CVE-2023-4003
CVSS 7.6high
One Identity Password Manager version 5.9.7.1 - Unauthenticated physical access privilege escalation
9/27/2023
CVE-2022-38725
CVSS 7.5high
1/23/2023
CVE-2020-7962
CVSS 5.3medium
11/13/2020🔧 No Patch
CVE-2020-8019
CVSS 7.8high
syslog-ng: Local privilege escalation from new to root in %post
6/29/2020🔧 No Patch
CVE-2019-13497
CVSS 6.5medium
11/4/2019🔧 No Patch
CVE-2019-13496
CVSS 8.1high
11/4/2019🔧 No Patch
CVE-2019-13498
CVSS 7.4high
7/29/2019🔧 No Patch
Monitor oneidentity in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.