Kiuwan · Kiuwan Cloud · CVE-2026-24069
**Name of the Vulnerable Software and Affected Versions**
Kiuwan Cloud (affected versions not specified)
Kiuwan SAST on-premise (KOP) versions prior to 2.8.2509.4
**Description**
Kiuwan SAST improperly authorizes SSO logins for mapped user accounts that have been locally disabled. This allows users whose accounts are disabled in the user admin settings to maintain access to the application.
**Recommendations**
Update Kiuwan SAST on-premise (KOP) to version 2.8.2509.4 or later.
At the moment, there is no information about a newer version that contains a fix for this vulnerability for Kiuwan Cloud.